search

StreisandEffect / streisand

Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, or a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
https://twitter.com/streisandvpn
Other
23.16k stars 2k forks source link

Problem with ssh private key when installing on Vultr [Beginner here] #1466

Open FullStackSandwich opened 5 years ago

FullStackSandwich commented 5 years ago

Expected behavior:

Success

Actual Behavior:

PLAY [Prepare the new server for Ansible] **

TASK [Install Python using a raw SSH command to enable the execution of Ansible modules] *** changed: [IP ADDRESS OF MY VULTR SERVER] Do you have a fully qualified domain pointed at your Streisand server?

This is an optional question. If you have a domain that points to your Streisand server, the installation scripts can request a Let's Encrypt HTTPS certificate for you automatically. If you do not provide one or the request fails, a self-signed certificate will be used instead.

If you have just created a new cloud server in previous steps now is a good time to point your fully qualified domain to your server's public address. Make sure the fully qualified domain resolves to the correct IP address before proceeding.

Please type your fully qualified domain below. Press enter to skip. : Which email address do you want to use as a contact for the Streisand server's Let's Encrypt certificate?

This is an optional question. If you supply an email address Let's Encrypt will send you important (but infrequent) notifications about your certificate. These messages include any upcoming certificate expirations, and important changes to the Let's Encrypt service. The email provided will not be used for anything else or shared with the Streisand developers.

Please type your contact email below. Press enter to skip. :

PLAY [Collect information about the Streisand domain] **

TASK [Set Streisand domain] **** skipping: [IP ADDRESS OF MY VULTR SERVER]

TASK [Set Streisand admin email] *** ok: [IP ADDRESS OF MY VULTR SERVER]

TASK [Enable Let's Encrypt role] *** skipping: [IP ADDRESS OF MY VULTR SERVER]

TASK [Disable Let's Encrypt role] ** ok: [IP ADDRESS OF MY VULTR SERVER]

PLAY [Collect diagnostics in case of error] ****

TASK [diagnostics : Determine the git revision of the current Streisand clone] *** ok: [localhost]

TASK [diagnostics : Determine if there are untracked changes in the Streisand clone] *** ok: [localhost]

TASK [diagnostics : Produce the diagnostics markdown file to share if there is an error] *** fatal: [localhost]: FAILED! => {"changed": false, "msg": "AnsibleUndefinedVariable: 'streisand_ssh_private_key' is undefined"} to retry, use: --limit @/Users/bbchanyukidesu/streisand/playbooks/streisand.retry

Steps to Reproduce:

  1. add ssh public key to my Vultr server
  2. open terminal
  3. ssh-add -K ~/.ssh/id_rsa (I already have an existing ssh key that i use for another server)
  4. cd streisand
  5. ansible-playbook playbooks/streisand.yml
  6. leave both questions empty

Ansible Information

Streisand Information

Enabled Roles

I would not be opposed if someone also pointed me in the right direction to learn more about this stuff. Books or whatnot.

FullStackSandwich commented 5 years ago

Perhaps i only created a public key only

alimakki commented 5 years ago

Hi @FullStackSandwich

Prior to installation when the scripts prompts you for which VPNs you want installed, the first prompt should be to specify which SSH key - are you sure you haven't had any typos?

If that's not the case have you checked the permissions on your SSH keys?

Also you really want to disable Tor, upstream is currently broken and your installation likely won't go through with it enabled.