From d7bd662fbdbec2f3baf532fa10fc4e38f29ca9b9 Mon Sep 17 00:00:00 2001
From: Martin Schroschk <martin.schroschk@tu-dresden.de>
Date: Mon, 28 Jun 2021 15:37:41 +0200
Subject: [PATCH] Putty: Fix checks

---
 .../docs/access/SSHMitPutty.md                | 87 +++++++++----------
 .../docs/access/SecurityRestrictions.md       | 44 +++++-----
 2 files changed, 61 insertions(+), 70 deletions(-)

diff --git a/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md b/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md
index 59ab28be4..fde81d86a 100644
--- a/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md
+++ b/doc.zih.tu-dresden.de/docs/access/SSHMitPutty.md
@@ -1,10 +1,8 @@
-\<br />
-
-## Prerequisites for Access to a Linux Cluster From a Windows Workstation
+# Prerequisites for Access to a Linux Cluster From a Windows Workstation
 
 To work at an HPC system at ZIH you need
 
--   a program that provides you a command shell (like \<a
+- a program that provides you a command shell (like \<a
     href="<http://www.chiark.greenend.org.uk/%7Esgtatham/putty/download.html>"
     target="\_top">"putty"\</a> or \<a
     href="<http://tu-dresden.de/die_tu_dresden/zentrale_einrichtungen/zih/dienste/datennetz_dienste/secure_shell/>"
@@ -13,34 +11,31 @@ To work at an HPC system at ZIH you need
 
 and if you would like to use graphical software from the HPC system
 
--   an X-Server (like \<a
-    href="<http://www.straightrunning.com/XmingNotes/>"
-    target="\_top">X-Ming\</a> or \<a
-    href="<http://www.cygwin.com/cygwin/>" target="\_top">CygWin32\</a>)
+- an X-Server (like [X-Ming](<http://www.straightrunning.com/XmingNotes/)
+  or [CygWin32](http://www.cygwin.com/cygwin/)
 
 at your local PC. Here, you can find installation descriptions for the X
-servers: \<a
-href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/install-Xming.pdf>"
-target="\_top">X-Ming Installation\</a>, \<a
-href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/cygwin_doku_de.pdf>"
-target="\_top">CygWin Installation\</a>. \<br /> Please note: You have
-also to install additional fonts for X-Ming at your PC. (also to find at
-\<a href="<http://www.straightrunning.com/XmingNotes/>"
-target="\_top">this website\</a>) If you would like transfer files
-between your PC and an HPC machine, you should also have
+servers: [X-Ming Installation] **todo** 
+<!--href="<https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/install-Xming.pdf>"-->
+[CygWin Installation] **todo**
+<!--https://doc.zih.tu-dresden.de/hpc-wiki/pub/Compendium/Login/cygwin_doku_de.pdf-->
+Please note: You have also to install additional fonts for X-Ming at your PC. (also to find at
+[this website](http://www.straightrunning.com/XmingNotes/).
+If you would like transfer files between your PC and an HPC machine, you should also have
+
+- [WinSCP](http://winscp.net/eng/docs/lang:de>) (an SCP program is also included in the
+  "Secure Shell ssh3.2" software; see above)
+
+installed at your PC.
 
--   \<a href="<http://winscp.net/eng/docs/lang:de>"
-    target="\_top">WinSCP\</a> (an SCP program is also included in the
-    "Secure Shell ssh3.2" software; see above)
+We advice putty + Xming (+ WinSCP).
 
-installed at your PC.\<br /> We advice putty + Xming (+ WinSCP). \<br
-/>Please note: If you use software with OpenGL (like abaqus), please
-install "Xming-mesa" instead of "Xmin".
+Please note: If you use software with OpenGL (like abaqus), please install "Xming-mesa" instead of
+"Xmin".
 
-After installation you have to start always at first the X-server. At
-the bottom right corner you will get an new icon (a black X for X-Ming).
-Now you can start putty.exe. A window will appear where you have to give
-the name of the computer and you have to switch ON the "X11 forwarding".
+After installation you have to start always at first the X-server. At the bottom right corner you
+will get an new icon (a black X for X-Ming).  Now you can start putty.exe. A window will appear
+where you have to give the name of the computer and you have to switch ON the "X11 forwarding".
 (please look at the figures)
 
 \<img alt="" src="%PUBURL%/Compendium/Login/putty1.jpg" title="putty:
@@ -53,27 +48,27 @@ machine, where you can put your linux commands. If you would like to use
 commercial software, please follow the next instructions about the
 modules.
 
-## \<a name="Copy_Files_From_the_HRSK_Machines_to_Your_Local_Machine">\</a> Copy Files From the HRSK Machines to Your Local Machine
+## Copy Files From the HRSK Machines to Your Local Machine
 
 Take the following steps if your Workstation has a Windows operating
 system. You need putty (see above) and your favorite SCP program, in
 this example WinSCP.
 
--   Make a connection to login1.zih.tu-dresden.de\<br /> \<img
-    alt="tunnel1.png" src="%PUBURL%/Compendium/Login/tunnel1.png"
-    width="300" />
--   Setup SSH tunnel (data from your machine port 1222 will be directed
-    to deimos port 22)\<br /> \<img alt="tunnel2.png"
-    src="%PUBURL%/Compendium/Login/tunnel2.png" width="300" />
--   After clicking on the "Add" button, the tunnel should look like
-    that\<br /> \<img alt="tunnel3.png"
-    src="%PUBURL%/Compendium/Login/tunnel3.png" width="300" />
--   Click "Open" and enter your login and password (upon successful
-    login, the tunnel will exist)\<br /> \<img alt="tunnel4.png"
-    src="%PUBURL%/Compendium/Login/tunnel4.png" width="300" />
--   Put the putty window in the background (leave it running) and open
-    WinSCP (or your favorite SCP program), connect to localhost:1222\<br
-    /> \<img alt="tunnel5.png"
-    src="%PUBURL%/Compendium/Login/tunnel5.png" width="300" />
--   After hitting "Login" and entering your username/password, you can
-    access your files on deimos.
+- Make a connection to login1.zih.tu-dresden.de\<br /> \<img
+  alt="tunnel1.png" src="%PUBURL%/Compendium/Login/tunnel1.png"
+  width="300" />
+- Setup SSH tunnel (data from your machine port 1222 will be directed
+  to deimos port 22)\<br /> \<img alt="tunnel2.png"
+  src="%PUBURL%/Compendium/Login/tunnel2.png" width="300" />
+- After clicking on the "Add" button, the tunnel should look like
+  that\<br /> \<img alt="tunnel3.png"
+  src="%PUBURL%/Compendium/Login/tunnel3.png" width="300" />
+- Click "Open" and enter your login and password (upon successful
+  login, the tunnel will exist)\<br /> \<img alt="tunnel4.png"
+  src="%PUBURL%/Compendium/Login/tunnel4.png" width="300" />
+- Put the putty window in the background (leave it running) and open
+  WinSCP (or your favorite SCP program), connect to localhost:1222\<br
+  /> \<img alt="tunnel5.png"
+  src="%PUBURL%/Compendium/Login/tunnel5.png" width="300" />
+- After hitting "Login" and entering your username/password, you can
+  access your files on deimos.
diff --git a/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md b/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md
index 53d678203..25f627041 100644
--- a/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md
+++ b/doc.zih.tu-dresden.de/docs/access/SecurityRestrictions.md
@@ -1,31 +1,27 @@
 # Security Restrictions on Taurus
 
-As a result of the security incident the German HPC sites in Gau
-Alliance are now adjusting their measurements to prevent infection and
-spreading of the malware.
+As a result of the security incident the German HPC sites in Gau Alliance are now adjusting their
+measurements to prevent infection and spreading of the malware.
 
 The most important items for HPC systems at ZIH are:
 
--   All users (who haven't done so recently) have to [change their ZIH
-    password](https://selfservice.zih.tu-dresden.de/l/index.php/pswd/change_zih_password).
-    **Login to Taurus is denied with an old password.**
--   All old (private and public) keys have been moved away.
--   All public ssh keys for Taurus have to be re-generated \<br />
-    -   using only the ED25519 algorithm (`ssh-keygen -t ed25519`)
-    -   **passphrase for the private key must not be empty**
--   Ideally, there should be no private key on Taurus except for local
-    use. Keys to other systems must be passphrase-protected!
--   **ssh to Taurus** is only possible from inside TU Dresden Campus
-    (login\[1,2\].zih.tu-dresden.de will be blacklisted). Users from
-    outside can use VPN (see
-    [here](https://tu-dresden.de/zih/dienste/service-katalog/arbeitsumgebung/zugang_datennetz/vpn)).
--   **ssh from Taurus** is only possible inside TU Dresden Campus.
-    (Direct ssh access to other computing centers was the spreading
-    vector of the recent incident.)
+- All users (who haven't done so recently) have to
+  [change their ZIH password](https://selfservice.zih.tu-dresden.de/l/index.php/pswd/change_zih_password).
+  **Login to Taurus is denied with an old password.**
+- All old (private and public) keys have been moved away.
+- All public ssh keys for Taurus have to
+  - be re-generated using only the ED25519 algorithm (`ssh-keygen -t ed25519`)
+  - **passphrase for the private key must not be empty**
+- Ideally, there should be no private key on Taurus except for local use.
+- Keys to other systems must be passphrase-protected!
+- **ssh to Taurus** is only possible from inside TU Dresden Campus
+  (login\[1,2\].zih.tu-dresden.de will be blacklisted). Users from outside can use VPN (see
+  [here](https://tu-dresden.de/zih/dienste/service-katalog/arbeitsumgebung/zugang_datennetz/vpn)).
+- **ssh from Taurus** is only possible inside TU Dresden Campus.
+  (Direct ssh access to other computing centers was the spreading vector of the recent incident.)
 
-Data transfer is possible via the taurusexport nodes. We are working on
-a bandwidth-friendly solution.
+Data transfer is possible via the taurusexport nodes. We are working on a bandwidth-friendly
+solution.
 
-We understand that all this will change convenient workflows. If the
-measurements would render your work on Taurus completely impossible,
-please contact the HPC support.
+We understand that all this will change convenient workflows. If the measurements would render your
+work on Taurus completely impossible, please contact the HPC support.
-- 
GitLab