Putty: Fix checks

d7bd662f · Martin Schroschk · 88f81b64 · d7bd662f · d7bd662f
Commit d7bd662f authored 3 years ago by Martin Schroschk
--- a/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md
+++ b/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md
-\<br />
-
-## Prerequisites for Access to a Linux Cluster From a Windows Workstation
+# Prerequisites for Access to a Linux Cluster From a Windows Workstation

 To work at an HPC system at ZIH you need

-   a program that provides you a command shell (like \<a
+- a program that provides you a command shell (like \<a
    href="<http://www.chiark.greenend.org.uk/%7Esgtatham/putty/download.html>"
    target="\_top">"putty"\</a> or \<a
    href="<http://tu-dresden.de/die_tu_dresden/zentrale_einrichtungen/zih/dienste/datennetz_dienste/secure_shell/>"
@@ -13,34 +11,31 @@ To work at an HPC system at ZIH you need

 and if you would like to use graphical software from the HPC system

-   an X-Server (like \<a
-    href="<http://www.straightrunning.com/XmingNotes/>"
-    target="\_top">X-Ming\</a> or \<a
-    href="<http://www.cygwin.com/cygwin/>" target="\_top">CygWin32\</a>)
+- an X-Server (like [X-Ming](<http://www.straightrunning.com/XmingNotes/)
+  or [CygWin32](http://www.cygwin.com/cygwin/)

 at your local PC. Here, you can find installation descriptions for the X
-servers: \<a
-href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/install-Xming.pdf>"
-target="\_top">X-Ming Installation\</a>, \<a
-href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/cygwin_doku_de.pdf>"
-target="\_top">CygWin Installation\</a>. \<br /> Please note: You have
-also to install additional fonts for X-Ming at your PC. (also to find at
-\<a href="<http://www.straightrunning.com/XmingNotes/>"
-target="\_top">this website\</a>) If you would like transfer files
-between your PC and an HPC machine, you should also have
+servers: [X-Ming Installation] **todo** 
+<!--href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/install-Xming.pdf>"-->
+[CygWin Installation] **todo**
+<!--https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/cygwin_doku_de.pdf-->
+Please note: You have also to install additional fonts for X-Ming at your PC. (also to find at
+[this website](http://www.straightrunning.com/XmingNotes/).
+If you would like transfer files between your PC and an HPC machine, you should also have
+
+- [WinSCP](http://winscp.net/eng/docs/lang:de>) (an SCP program is also included in the
+  "Secure Shell ssh3.2" software; see above)
+
+installed at your PC.

-   \<a href="<http://winscp.net/eng/docs/lang:de>"
-    target="\_top">WinSCP\</a> (an SCP program is also included in the
-    "Secure Shell ssh3.2" software; see above)
+We advice putty + Xming (+ WinSCP).

-installed at your PC.\<br /> We advice putty + Xming (+ WinSCP). \<br
-/>Please note: If you use software with OpenGL (like abaqus), please
-install "Xming-mesa" instead of "Xmin".
+Please note: If you use software with OpenGL (like abaqus), please install "Xming-mesa" instead of
+"Xmin".

-After installation you have to start always at first the X-server. At
-the bottom right corner you will get an new icon (a black X for X-Ming).
-Now you can start putty.exe. A window will appear where you have to give
-the name of the computer and you have to switch ON the "X11 forwarding".
+After installation you have to start always at first the X-server. At the bottom right corner you
+will get an new icon (a black X for X-Ming).  Now you can start putty.exe. A window will appear
+where you have to give the name of the computer and you have to switch ON the "X11 forwarding".
 (please look at the figures)

 \<img alt="" src="%PUBURL%/Compendium/Login/putty1.jpg" title="putty:
@@ -53,27 +48,27 @@ machine, where you can put your linux commands. If you would like to use
 commercial software, please follow the next instructions about the
 modules.

-## \<a name="Copy_Files_From_the_HRSK_Machines_to_Your_Local_Machine">\</a> Copy Files From the HRSK Machines to Your Local Machine
+## Copy Files From the HRSK Machines to Your Local Machine

 Take the following steps if your Workstation has a Windows operating
 system. You need putty (see above) and your favorite SCP program, in
 this example WinSCP.

-   Make a connection to login1.zih.tu-dresden.de\<br /> \<img
-    alt="tunnel1.png" src="%PUBURL%/Compendium/Login/tunnel1.png"
-    width="300" />
-   Setup SSH tunnel (data from your machine port 1222 will be directed
-    to deimos port 22)\<br /> \<img alt="tunnel2.png"
-    src="%PUBURL%/Compendium/Login/tunnel2.png" width="300" />
-   After clicking on the "Add" button, the tunnel should look like
-    that\<br /> \<img alt="tunnel3.png"
-    src="%PUBURL%/Compendium/Login/tunnel3.png" width="300" />
-   Click "Open" and enter your login and password (upon successful
-    login, the tunnel will exist)\<br /> \<img alt="tunnel4.png"
-    src="%PUBURL%/Compendium/Login/tunnel4.png" width="300" />
-   Put the putty window in the background (leave it running) and open
-    WinSCP (or your favorite SCP program), connect to localhost:1222\<br
-    /> \<img alt="tunnel5.png"
-    src="%PUBURL%/Compendium/Login/tunnel5.png" width="300" />
-   After hitting "Login" and entering your username/password, you can
-    access your files on deimos.
+- Make a connection to login1.zih.tu-dresden.de\<br /> \<img
+  alt="tunnel1.png" src="%PUBURL%/Compendium/Login/tunnel1.png"
+  width="300" />
+- Setup SSH tunnel (data from your machine port 1222 will be directed
+  to deimos port 22)\<br /> \<img alt="tunnel2.png"
+  src="%PUBURL%/Compendium/Login/tunnel2.png" width="300" />
+- After clicking on the "Add" button, the tunnel should look like
+  that\<br /> \<img alt="tunnel3.png"
+  src="%PUBURL%/Compendium/Login/tunnel3.png" width="300" />
+- Click "Open" and enter your login and password (upon successful
+  login, the tunnel will exist)\<br /> \<img alt="tunnel4.png"
+  src="%PUBURL%/Compendium/Login/tunnel4.png" width="300" />
+- Put the putty window in the background (leave it running) and open
+  WinSCP (or your favorite SCP program), connect to localhost:1222\<br
+  /> \<img alt="tunnel5.png"
+  src="%PUBURL%/Compendium/Login/tunnel5.png" width="300" />
+- After hitting "Login" and entering your username/password, you can
+  access your files on deimos.
--- a/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md
+++ b/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md
 # Security Restrictions on Taurus

-As a result of the security incident the German HPC sites in Gau
-Alliance are now adjusting their measurements to prevent infection and
-spreading of the malware.
+As a result of the security incident the German HPC sites in Gau Alliance are now adjusting their
+measurements to prevent infection and spreading of the malware.

 The most important items for HPC systems at ZIH are:

-   All users (who haven't done so recently) have to [change their ZIH
-    password](https://selfservice.zih.tu-dresden.de/l/index.php/pswd/change_zih_password).
-    **Login to Taurus is denied with an old password.**
-   All old (private and public) keys have been moved away.
-   All public ssh keys for Taurus have to be re-generated \<br />
-    -   using only the ED25519 algorithm (`ssh-keygen -t ed25519`)
-    -   **passphrase for the private key must not be empty**
-   Ideally, there should be no private key on Taurus except for local
-    use. Keys to other systems must be passphrase-protected!
-   **ssh to Taurus** is only possible from inside TU Dresden Campus
-    (login\[1,2\].zih.tu-dresden.de will be blacklisted). Users from
-    outside can use VPN (see
-    [here](https://tu-dresden.de/zih/dienste/service-katalog/arbeitsumgebung/zugang_datennetz/vpn)).
-   **ssh from Taurus** is only possible inside TU Dresden Campus.
-    (Direct ssh access to other computing centers was the spreading
-    vector of the recent incident.)
+- All users (who haven't done so recently) have to
+  [change their ZIH password](https://selfservice.zih.tu-dresden.de/l/index.php/pswd/change_zih_password).
+  **Login to Taurus is denied with an old password.**
+- All old (private and public) keys have been moved away.
+- All public ssh keys for Taurus have to
+  - be re-generated using only the ED25519 algorithm (`ssh-keygen -t ed25519`)
+  - **passphrase for the private key must not be empty**
+- Ideally, there should be no private key on Taurus except for local use.
+- Keys to other systems must be passphrase-protected!
+- **ssh to Taurus** is only possible from inside TU Dresden Campus
+  (login\[1,2\].zih.tu-dresden.de will be blacklisted). Users from outside can use VPN (see
+  [here](https://tu-dresden.de/zih/dienste/service-katalog/arbeitsumgebung/zugang_datennetz/vpn)).
+- **ssh from Taurus** is only possible inside TU Dresden Campus.
+  (Direct ssh access to other computing centers was the spreading vector of the recent incident.)

-Data transfer is possible via the taurusexport nodes. We are working on
-a bandwidth-friendly solution.
+Data transfer is possible via the taurusexport nodes. We are working on a bandwidth-friendly
+solution.

-We understand that all this will change convenient workflows. If the
-measurements would render your work on Taurus completely impossible,
-please contact the HPC support.
+We understand that all this will change convenient workflows. If the measurements would render your
+work on Taurus completely impossible, please contact the HPC support.