ul hpc school 2017
play

UL HPC School 2017 PS1: Getting Started on the UL HPC platform UL - PowerPoint PPT Presentation

Sep 25, 2023 •774 likes •1.3k views

UL HPC School 2017 PS1: Getting Started on the UL HPC platform UL High Performance Computing (HPC) Team C. Parisot University of Luxembourg (UL), Luxembourg http://hpc.uni.lu C. Parisot (University of Luxembourg) UL HPC School 2017 1 / 22

  1. UL HPC School 2017 PS1: Getting Started on the UL HPC platform UL High Performance Computing (HPC) Team C. Parisot University of Luxembourg (UL), Luxembourg http://hpc.uni.lu C. Parisot (University of Luxembourg) UL HPC School 2017 1 / 22 �

  2. Latest versions available on Github : UL HPC tutorials: https://github.com/ULHPC/tutorials UL HPC School: http://hpc.uni.lu/hpc-school/ PS1 tutorial sources: https://github.com/ULHPC/tutorials/tree/devel/basic/getting_started C. Parisot (University of Luxembourg) UL HPC School 2017 2 / 22 �

  3. Introduction Summary 1 Introduction 2 SSH Secure Shell 3 Hands-On: Getting Started on ULHPC C. Parisot (University of Luxembourg) UL HPC School 2017 3 / 22 �

  4. Introduction Main Objectives of this Session Understand SSH Connect to the UL HPC Platform → SSH configuration ֒ → Generate your SSH key pair ֒ → overcome port filtering ֒ Discovering, visualizing and reserving UL HPC resources → Working environment ֒ → Web monitoring interfaces ֒ → OAR vs. SLURM Batch Scheduler ֒ → Job management ֒ → Software / Environement Modules ֒ C. Parisot (University of Luxembourg) UL HPC School 2017 4 / 22 �

  5. SSH Secure Shell Summary 1 Introduction 2 SSH Secure Shell 3 Hands-On: Getting Started on ULHPC C. Parisot (University of Luxembourg) UL HPC School 2017 5 / 22 �

  6. SSH Secure Shell SSH: Secure Shell Ensure secure connection to remote (UL) server → establish encrypted tunnel using asymmetric keys ֒ � Public id_rsa.pub vs. Private id_rsa ( without .pub ) � typically on a non-standard port ( Ex : 8022) limits kiddie script � Basic rule: 1 machine = 1 key pair → the private key is SECRET : never send it to anybody ֒ � Can be protected with a passphrase C. Parisot (University of Luxembourg) UL HPC School 2017 6 / 22 �

  7. SSH Secure Shell SSH: Secure Shell Ensure secure connection to remote (UL) server → establish encrypted tunnel using asymmetric keys ֒ � Public id_rsa.pub vs. Private id_rsa ( without .pub ) � typically on a non-standard port ( Ex : 8022) limits kiddie script � Basic rule: 1 machine = 1 key pair → the private key is SECRET : never send it to anybody ֒ � Can be protected with a passphrase SSH is used as a secure backbone channel for many tools → Remote shell i.e remote command line ֒ → File transfer: rsync , scp , sftp ֒ → versionning synchronization ( svn , git ), github, gitlab etc. ֒ C. Parisot (University of Luxembourg) UL HPC School 2017 6 / 22 �

  8. SSH Secure Shell SSH: Secure Shell Ensure secure connection to remote (UL) server → establish encrypted tunnel using asymmetric keys ֒ � Public id_rsa.pub vs. Private id_rsa ( without .pub ) � typically on a non-standard port ( Ex : 8022) limits kiddie script � Basic rule: 1 machine = 1 key pair → the private key is SECRET : never send it to anybody ֒ � Can be protected with a passphrase SSH is used as a secure backbone channel for many tools → Remote shell i.e remote command line ֒ → File transfer: rsync , scp , sftp ֒ → versionning synchronization ( svn , git ), github, gitlab etc. ֒ Authentication: → password (disable if possible) ֒ → ( better ) public key authentication ֒ C. Parisot (University of Luxembourg) UL HPC School 2017 6 / 22 �

  9. SSH Secure Shell SSH: Public Key Authentication Client Local Machine local homedir ~/.ssh/ owns local private key id_rsa id_rsa .pub logs known servers known_hosts C. Parisot (University of Luxembourg) UL HPC School 2017 7 / 22 �

  10. SSH Secure Shell SSH: Public Key Authentication Client Server Local Machine Remote Machine local homedir remote homedir ~/.ssh/ ~/.ssh/ knows granted owns local private key authorized_keys id_rsa (public) key id_rsa .pub logs known servers known_hosts C. Parisot (University of Luxembourg) UL HPC School 2017 7 / 22 �

  11. SSH Secure Shell SSH: Public Key Authentication Client Server Local Machine Remote Machine local homedir remote homedir ~/.ssh/ ~/.ssh/ knows granted owns local private key authorized_keys id_rsa (public) key id_rsa .pub SSH server config /etc/ssh/ sshd_config logs known servers known_hosts ssh_host_rsa_key ssh_host_rsa_key .pub C. Parisot (University of Luxembourg) UL HPC School 2017 7 / 22 �

  12. SSH Secure Shell SSH: Public Key Authentication Client Server Local Machine Remote Machine local homedir remote homedir ~/.ssh/ ~/.ssh/ knows granted owns local private key authorized_keys id_rsa (public) key id_rsa .pub C. Parisot (University of Luxembourg) UL HPC School 2017 7 / 22 �

  13. SSH Secure Shell SSH: Public Key Authentication Client Server Local Machine Remote Machine local homedir remote homedir ~/.ssh/ ~/.ssh/ 1. Initiate connection knows granted owns local private key authorized_keys id_rsa (public) key 2. create random challenge, “encrypt” using public key id_rsa .pub 3. solve challenge using private key return response 4. allow connection iff response == challenge Restrict to public key authentication: /etc/ssh/sshd_config : PermitRootLogin no # Enable Public key auth. # Disable Passwords RSAAuthentication yes PasswordAuthentication no PubkeyAuthentication yes ChallengeResponseAuthentication no C. Parisot (University of Luxembourg) UL HPC School 2017 7 / 22 �

  14. SSH Secure Shell SSH Setup on Linux / Mac OS OpenSSH natively supported; configuration directory : ~/.ssh/ → package openssh-client (Debian-like) or ssh (Redhat-like) ֒ SSH Key Pairs (public vs private) generation: ssh-keygen → specify a strong passphrase ֒ � protect your private key from being stolen i.e. impersonation � drawback: passphrase must be typed to use your key C. Parisot (University of Luxembourg) UL HPC School 2017 8 / 22 �

  15. SSH Secure Shell SSH Setup on Linux / Mac OS OpenSSH natively supported; configuration directory : ~/.ssh/ → package openssh-client (Debian-like) or ssh (Redhat-like) ֒ SSH Key Pairs (public vs private) generation: ssh-keygen → specify a strong passphrase ֒ � protect your private key from being stolen i.e. impersonation � drawback: passphrase must be typed to use your key ssh-agent C. Parisot (University of Luxembourg) UL HPC School 2017 8 / 22 �

  16. SSH Secure Shell SSH Setup on Linux / Mac OS OpenSSH natively supported; configuration directory : ~/.ssh/ → package openssh-client (Debian-like) or ssh (Redhat-like) ֒ SSH Key Pairs (public vs private) generation: ssh-keygen → specify a strong passphrase ֒ � protect your private key from being stolen i.e. impersonation � drawback: passphrase must be typed to use your key ssh-agent DSA and RSA 1024 bit are deprecated now! C. Parisot (University of Luxembourg) UL HPC School 2017 8 / 22 �

  17. SSH Secure Shell SSH Setup on Linux / Mac OS OpenSSH natively supported; configuration directory : ~/.ssh/ → package openssh-client (Debian-like) or ssh (Redhat-like) ֒ SSH Key Pairs (public vs private) generation: ssh-keygen → specify a strong passphrase ֒ � protect your private key from being stolen i.e. impersonation � drawback: passphrase must be typed to use your key ssh-agent DSA and RSA 1024 bit are deprecated now! $> ssh-keygen -t rsa -b 4096 -o -a 100 # 4096 bits RSA $> ssh-keygen -t ed25519 -o -a 100 # new sexy Ed25519 (better) Public Key Private (identity) key ~/.ssh/id_{rsa,ed25519} ~/.ssh/id_{rsa,ed25519} .pub C. Parisot (University of Luxembourg) UL HPC School 2017 8 / 22 �

  18. SSH Secure Shell SSH Setup on Windows Putty Suite, includes: http://www.chiark.greenend.org.uk/~sgtatham/putty/ → PuTTY, the free SSH client ֒ → Pageant, an SSH authentication agent for PuTTY tools ֒ → PLink, th PuTTy CLI ֒ → PuTTYgen, an RSA and DSA key generation utility ֒ C. Parisot (University of Luxembourg) UL HPC School 2017 9 / 22 �

  19. SSH Secure Shell SSH Setup on Windows Putty Suite, includes: http://www.chiark.greenend.org.uk/~sgtatham/putty/ → PuTTY, the free SSH client ֒ → Pageant, an SSH authentication agent for PuTTY tools ֒ → PLink, th PuTTy CLI ֒ → PuTTYgen, an RSA and DSA key generation utility ֒ PuTTY � = OpenSSH C. Parisot (University of Luxembourg) UL HPC School 2017 9 / 22 �

  20. SSH Secure Shell SSH Setup on Windows Putty Suite, includes: http://www.chiark.greenend.org.uk/~sgtatham/putty/ → PuTTY, the free SSH client ֒ → Pageant, an SSH authentication agent for PuTTY tools ֒ → PLink, th PuTTy CLI ֒ → PuTTYgen, an RSA and DSA key generation utility ֒ PuTTY � = OpenSSH Putty keys are NOT supported by OpenSSH (yet can be exported) Binding Pageant with OpenSSH agent is NOT natively supported → Third-party tools like ssh-pageant are made for that ֒ → Combine nicely with Git bash ֒ https://git-for-windows.github.io/ with PLink, hostnames eventually refer to PuTTY Sessions → NEVER to SSH entries in ~/.ssh/config ֒ → This usage might be hidden. . . Ex: $GIT_SSH etc. ֒ C. Parisot (University of Luxembourg) UL HPC School 2017 9 / 22 �

  21. SSH Secure Shell SSH Basic Usage *.<domain>-intern.com gitlab bastion1.<domain>.com C. Parisot (University of Luxembourg) UL HPC School 2017 10 / 22 �

  22. SSH Secure Shell SSH Basic Usage *.<domain>-intern.com gitlab bastion1.<domain>.com SSH C. Parisot (University of Luxembourg) UL HPC School 2017 10 / 22 �

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Monticello Community School District October 11, 2017 School Facilities Presentation 2017-2018

Monticello Community School District October 11, 2017 School Facilities Presentation 2017-2018

Monticello Community School District October 11, 2017 School Facilities Presentation 2017-2018 School Year School Facilities School Board Meeting 10/11/17 School Facilities Discussion: Share Information Going out to the School Facility

731 views • 42 slides
Wits Business School Hosts of the ICMLG 2017 16 17 March 2017 Wits Business School,

Wits Business School Hosts of the ICMLG 2017 16 17 March 2017 Wits Business School,

Wits Business School Hosts of the ICMLG 2017 16 17 March 2017 Wits Business School, Johannesburg, South Africa Leadership Team Head of School : Professor Steve Bluen Academic Director : Chris Van Der Hoven International Director : Prof Kalu Ojah

399 views • 10 slides
Presentatjon Secondary School Summer Newsletuer 2017 WELCOME FROM THE PRINCIPAL As the 2017/18

Presentatjon Secondary School Summer Newsletuer 2017 WELCOME FROM THE PRINCIPAL As the 2017/18

Presentatjon Secondary School Summer Newsletuer 2017 WELCOME FROM THE PRINCIPAL As the 2017/18 school year draws to a close I would like to thank all of our parents for their contjnued support of the school. I would also like to wish our Junior

403 views • 9 slides
ESSEX SCHOOL DISTRICT Essex Elementary School Proposed Budget for School Year 2017/2018 For

ESSEX SCHOOL DISTRICT Essex Elementary School Proposed Budget for School Year 2017/2018 For

ESSEX SCHOOL DISTRICT Essex Elementary School Proposed Budget for School Year 2017/2018 For Board of Finance Presentation on March 30, 2017 A Mission-Driven Learning Community with a PK-12 Line of Sight Lon Seidman, Chair - Essex Board of

621 views • 23 slides
Annual Budget Hearing 2017-2018 Proposed School Budget Thursday, May 4, 2017 at 7 p.m.

Annual Budget Hearing 2017-2018 Proposed School Budget Thursday, May 4, 2017 at 7 p.m.

Annual Budget Hearing 2017-2018 Proposed School Budget Thursday, May 4, 2017 at 7 p.m. Cairo-Durham Middle/High School Media Center Presented by: Anthony Taibi, Superintendent Jeffrey Miriello, Business Official 1 Propositions for 2017-2018

454 views • 30 slides
Puyallup High School Registration for 2017-2018 School Year 2/24/2017 Upcoming Events HAC

Puyallup High School Registration for 2017-2018 School Year 2/24/2017 Upcoming Events HAC

Puyallup High School Registration for 2017-2018 School Year 2/24/2017 Upcoming Events HAC open February 7 th March 7 th Schedule change requests may be emailed to your PHS counselor until March 11th Mrs. Kaiser: A-C &amp; AVID

526 views • 17 slides
2017 Cohasset Middle/High School Wellness Survey Conducted: April 2017 High School May 2017

2017 Cohasset Middle/High School Wellness Survey Conducted: April 2017 High School May 2017

2017 Cohasset Middle/High School Wellness Survey Conducted: April 2017 High School May 2017 Middle School Cohasset Middle School Past 30 Day Use Tobacco/ Vaping % 2015 TOB 2017 TOB 2015 VAP 2017 VAP 6th 0 1 NM 2 7th 0 2 NM 3

527 views • 20 slides
School Selection Process For 2017-2018 The School Selection Process School Selection is open to

School Selection Process For 2017-2018 The School Selection Process School Selection is open to

School Selection Process For 2017-2018 The School Selection Process School Selection is open to students in all grades (K-12), and can be used to apply to School District of Philadelphia Schools ONLY (including different neighborhood, citywide

738 views • 20 slides
Oak Chan Elementary School Modernization Project SCHOOL PRESENTATION MARCH 30, 2017 OVERALL

Oak Chan Elementary School Modernization Project SCHOOL PRESENTATION MARCH 30, 2017 OVERALL

Oak Chan Elementary School Modernization Project SCHOOL PRESENTATION MARCH 30, 2017 OVERALL SITE PLAN PROJECT OVERVIEW Phase 1 Milestone #1 (April 17 July 31, 2017): Grading, Placement of all temporary portable classroom, restroom,

320 views • 14 slides
MacArthur School 2017-2018 A school accepting and understanding all emotions Standard 1.4 The

MacArthur School 2017-2018 A school accepting and understanding all emotions Standard 1.4 The

MacArthur School 2017-2018 A school accepting and understanding all emotions Standard 1.4 The governing authority establishes and ensures adherence to policies that are designed to support institutional effectiveness. Effective School Boards

573 views • 18 slides
School Census 2017/18 EAL networks Autumn 2017 Terri Cawser Partners on the pathway to a

School Census 2017/18 EAL networks Autumn 2017 Terri Cawser Partners on the pathway to a

Pupil and School Support School Census 2017/18 EAL networks Autumn 2017 Terri Cawser Partners on the pathway to a positive future for children and young people Aims Reminders of what information is needed and when Discussion of key

519 views • 22 slides
Middle School Study PRE NELMS The Process 1. During the 2016 - 2017 school year, the Middle

Middle School Study PRE NELMS The Process 1. During the 2016 - 2017 school year, the Middle

Middle School Study PRE NELMS The Process 1. During the 2016 - 2017 school year, the Middle School Steering Team Worked with the entire middle school faculty and staff to create a Self-Study (2016-2017). The team created a survey regarding

615 views • 40 slides
January 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces

January 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces

January 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces an inter-parish community of children with differing gifts. Through collaboration amongst the faculty, parents and other professionals, the School

463 views • 14 slides
February 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces

February 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces

February 2017 School of the Incarnation Mission Statement The School of the Incarnation embraces an inter-parish community of children with differing gifts. Through collaboration amongst the faculty, parents and other professionals, the School

464 views • 14 slides
Caldwell-West Caldwell School District 2017-18 School Budget PUBLIC HEARING MAY 1, 2017

Caldwell-West Caldwell School District 2017-18 School Budget PUBLIC HEARING MAY 1, 2017

Caldwell-West Caldwell School District 2017-18 School Budget PUBLIC HEARING MAY 1, 2017 Agenda for Public Hearing The Objectives and Context of the 2017-18 Budget What is contained in the 2017-18 Budget Highlights of the 2017-18

473 views • 25 slides
MIDDLE SCHOOL COURSE INFORMATION NIGHT 2017 MIDDLE SCHOOL TEAM Head of Middle School and

MIDDLE SCHOOL COURSE INFORMATION NIGHT 2017 MIDDLE SCHOOL TEAM Head of Middle School and

MIDDLE SCHOOL COURSE INFORMATION NIGHT 2017 MIDDLE SCHOOL TEAM Head of Middle School and Head of Year 10: Liz Nevins Head of Year 9 Daniel Toma Middle School Coordinators Dianna Moore, Tyler Phillips, John Box, Michael

513 views • 33 slides
Most Common Cryptography Mistakes 4/2/2014 #1: Dont Roll

Most Common Cryptography Mistakes 4/2/2014 #1: Dont Roll

Most Common Cryptography Mistakes 4/2/2014 #1: Dont Roll Your Own Dont design your own crypto algorithm Use a Dme-honored, well-tested

470 views • 28 slides
Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted]

Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted]

Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted] [encrypted] Who uses it? https://freedom.press/securedrop/directory Threat Model Assets Sources identity Confidentiality &amp; integrity

782 views • 35 slides
Section ?: More Wireshark, advanced SSH CSE 461 Computer Networks Wireshark (Not that) advanced

Section ?: More Wireshark, advanced SSH CSE 461 Computer Networks Wireshark (Not that) advanced

Section ?: More Wireshark, advanced SSH CSE 461 Computer Networks Wireshark (Not that) advanced SSH ssh user@server -p port SSH Keys SSH Encryption SSH uses symmetrical encryption The session key is negotiated securely under

530 views • 25 slides
CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due

CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due

CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due March 8 (Monday) at 8:00pm 1 Overview Your task is to simulate a system in which a dynamic collection of humans access a dynamic collection of

388 views • 6 slides
PGP, Pretty Good Privacy General Created 1991 by Philip Zimmerman (a former political

PGP, Pretty Good Privacy General Created 1991 by Philip Zimmerman (a former political

PGP, Pretty Good Privacy General Created 1991 by Philip Zimmerman (a former political activist irritated by restricting freedom of using encryptation) Uses IDEA, a symmetric very strong cryptoalgorithm, to encrypt data. RSA is

558 views • 16 slides
DISTRIBUTED AND PARALLEL SYSTEMS Grid Technologies - Practical Lab Lab 03 - Schedule 2

DISTRIBUTED AND PARALLEL SYSTEMS Grid Technologies - Practical Lab Lab 03 - Schedule 2

1 SELECTED TOPICS IN DISTRIBUTED AND PARALLEL SYSTEMS Grid Technologies - Practical Lab Lab 03 - Schedule 2 Create new certificates requests Discussion of Homework 01 Material required for next Assignment MyProxy Java CoG

315 views • 12 slides
A Large-scale Analysis of the Mnemonic Password Advice Johannes Kiesel , Benno Stein, Stefan Lucks

A Large-scale Analysis of the Mnemonic Password Advice Johannes Kiesel , Benno Stein, Stefan Lucks

A Large-scale Analysis of the Mnemonic Password Advice Johannes Kiesel , Benno Stein, Stefan Lucks Bauhaus-Universitt Weimar www.webis.de NDSS 2017, February 27 th 2017 Mnemonic Password Creation Password: Show password Random

684 views • 17 slides
SAuth: Protecting User Accounts from Password Database Leaks Georgios Kontaxis , Elias

SAuth: Protecting User Accounts from Password Database Leaks Georgios Kontaxis , Elias

SAuth: Protecting User Accounts from Password Database Leaks Georgios Kontaxis , Elias Athanasopoulos Georgios Portokalidis * , Angelos Keromytis Columbia University * Stevens Institute of Technology Authentication recognizes

441 views • 30 slides

More recommend