mountafp afp://filippo:password192.168.1.2/TimeMachine. Or - use something like FUSE and sshfs (not AFP, but it's trivial to setup). rootOpenWrt: cat /etc/afp.conf Netatalk 3.x configuration file Global mimic model. Then in macOS, in Finder, use the Connect to Server and connect to: afp://127.0.0.1:10548
This will start an ssh tunnel in the background tunneling from 10548 on your local machine to port 548 on the server. Using Netatalk’s AFP 3. You can start an SSH tunnel as follows: ssh -f -N -L 10548::548 -i Traffic out on the wire is SSH encrypted, and authed using your cert. It's still not secure, and still using password-based auth, but it's limiting that traffic to within the machine itself. Users can be assigned to particular volumes when you.
#NETATALK USER PASSWORD PASSWORD#
If you linux sys admin wants to use passwordless auth, then you're limited to setting up kerberos.Īlternatively, you could do something like setup an ssh tunnel to connect to the server, and send your AFP traffic through it, and just have the server listen on localhost, limited to accepting local requests. their basic Linux user accounts) or by setting up a special encrypted password file using netatalk. I don't think this is possible (authentication with OpenSSL cert), based on the linux man page, and the Apple tech documentation listing out authentication methods. However I am now setting up a couple of servers for users who may never log in.
#NETATALK USER PASSWORD MAC#
Until now I have always had Mac users who also had interactive accounts, and so could change their passwords at the shell prompt. This differs from Automatically mount AFP for Time Machine (without saving a password in plaintext) in that that answer has the server using a password, but then the Mac side pulls that password directly from the keychain. I am using debian netatalk 1.4b2, and have used it for some time happily. None of these in this MacWork Link seem to work without a password. My mount_afp command doesn't seem to work. But Mac Finder always asks for a password. So theoretically you'd think it would support the same public key login that SSH supports as well. The login for the AFP volume via netatalk is the SSH username:password. However I just set up netatalk to have an AFP volume. So they're set up and my Mac can SSH to my Linux server with no password, np. It's fine and convenient for SSH access as it forces me to set up authorized_keys, which are so convenient once you set them up. (in the following example, replace user with the username and group. USER (default: afp) and PASSWORD (default: afp) specifies username and password when connecting to the afp server. I'm not going to be allowed to change that. For netatalk to work, you need TCP/IP networking up and running on your machine. My Linux server does not allow SSH login with password because I have /etc/ssh/sshd_config with "PasswordAuthentication no".
0 kommentar(er)
