Using remote resources

Overview

Teaching: 15 min
Exercises: 15 min

Questions

• How can I work on the unix shell of a remote computer:

• How can I move files between computers

• How can I access web resources using the command line

• Mounting a directory from another computer onto your local filesystem

• When might different remote access tools be more appropriate for a task

Objectives

Let’s take a closer look at what happens when we use the shell on a desktop or laptop computer. The first step is to log in so that the operating system knows who we are and what we’re allowed to do. We do this by typing our username and password; the operating system checks those values against its records, and if they match, runs a shell for us.

As we type commands, the 1’s and 0’s that represent the characters we’re typing are sent from the keyboard to the shell. The shell displays those characters on the screen to represent what we type, and then, if what we typed was a command, the shell executes it and displays its output (if any).

What if we want to run some commands on another machine, such as the server in the basement that manages our database of experimental results? To do this, we have to first log in to that machine. We call this a remote login.

In order for us to be able to login, the remote computer must be running a remote login server and we will run a client program that can talk to that server. The client program passes our login credentials to the remote login server and, if we are allowed to login, that server then runs a shell for us on the remote computer.

Once our local client is connected to the remote server, everything we type into the client is passed on, by the server, to the shell running on the remote computer. That remote shell runs those commands on our behalf, just as a local shell would, then sends back output, via the server, to our client, for our computer to display.

The ssh protocol

SSH is a protocol which allows us to send secure encrypted information across an unsecured network, like the internet. The underlying protocol supports a number of commands we can use to move information of different types in different ways. The simplest and most straightforward is the ssh command which facilitates a remote login session connecting our local user and shell to any remote user we have permission to access.

$ ssh ubuntu@remote-machine

The first argument specifies the location of the remote machine (by IP address or a URL) as well as the user we want to connect to seperated by an @ sign. For the purpose of this course we’ve set up a container on our cluster for you to connect to the address remote-machine is actually a special kind of URL that only your computer will understand. In real life this would normally be an address on the internet which can be access from anywhere or at least an institutional local area network.

The authenticity of host '[192.168.1.59]:2231 ([192.168.1.59]:2231)' can't be established.
RSA key fingerprint is SHA256:4X1kUMDOG021U52XDL2U56GFIyC+S5koImofnTHvALk.
Are you sure you want to continue connecting (yes/no)?

When you connect to a computer for the first time you should see a warning like the one above. This signifies that the computer is trying to prove it’s identity by sending a fingerprint which relates to a key that only it knows. Depending on the security of the server you are connecting to they might distribute the fingerprint ahead of time for you to compare and advise you to double check it in case it changes at a later log on. In our case it is safe to type yes .

ubuntu@192.168.1.59's password: ********

Now you are prompted for a password. In an example of terribly bad practice our password is the same as our username ubuntu .

    ubuntu@remote_machine:~$

You should now have a prompt very similar to the one you started with but with a new username and computer hostname. Take a look around with the ls command and you should see that your new session has its own completely independent filesystem. Unfortunately None of the files are particularly relevant to us. Let’s change that, but first we need to go back to our original computer’s shell. Use the key combination Ctrl+D on an empty command prompt to log out.

Moving files

ssh has a simple file copying counterpart called scp which uses all the same methods for authentication and encryption but focuses on moving files between computers in a similar manner to the cp command we learnt about before.

Making sure we’re in the data-shell directory let’s copy the notes.txt file to the remote machine

$ cd ~/Desktop/data-shell
$ scp notes.txt ubuntu@remote-machine:/home/ubuntu

The format of the command should be quite familiar when comparing to the cp command for local copying. The last two arguments specify the source and the destination of the copy respectively. The difference comes in that any remote locations involved in the copy must be preceded by the username@IP syntax used in the ssh command previously. The first half tells scp how to access the computer and the second half tells it where in the filesystem to operate, these two segments are separated by a : .

notes.txt                                     100%   86   152.8KB/s   00:00

Now it looks like we’ve copied the file, but we should check.

Establishing a whole ssh session just to run one command might be a bit cumbersome. Instead we can tell ssh all the commands it needs to run at the same time we connect by adding an extra argument to the end. ssh will automatically disconnect after it completes the full command string.

$ ssh ubuntu@remote-machine "ls /home/ubuntu/*.txt"

notes.txt

Success!

How do we get files back from the remote server?

Using two commands we’ve uploaded a file to our server and checked it was there

$ scp notes.txt ubuntu@remote-machine:/home/ubuntu
$ ssh ubuntu@remote-machine "ls /home/ubuntu/*.txt"

More often we might want to have the server do some work on our files and then get them back. We can use exactly the same syntax structure with different arguments.

Try and make a change to notes.txt (perhaps add some text to the end with the echo command and >>) in the remote location and then retrieve the changed file. Remember to change the name of the file as you already have a notes.txt in your directory.

If you’re having trouble check man scp for more information about how to structure the command

Solution

ssh ubuntu@remote-machine "echo all done >> notes.txt"
scp ubuntu@remote-machine:notes.txt changed_notes.txt

Managing multiple remote files

Sometimes we need to manage a large number of files across two locations, often maintaining a specific directory structure. scp can handle this with it’s -r flag. Just like cp this puts the command in recursive mode allowing it to copy entire directories of files

$ scp -r ubuntu@remote-machine:/home/ubuntu/Course_Materials/salmon .

meta_info.json                                100% 1857     1.6MB/s   00:00    
observed_bias_3p.gz                           100%   54    53.7KB/s   00:00    
obs_gc.gz                                     100%  243   577.6KB/s   00:00    
expected_bias.gz                              100%   89   226.6KB/s   00:00    
observed_bias.gz                              100%   54   172.6KB/s   00:00    
ambig_info.tsv                                100%  618KB 274.6MB/s   00:00    
exp_gc.gz                                     100%  249     2.2MB/s   00:00    
fld.gz                                        100%  477     6.8MB/s   00:00    
flenDist.txt                                  100%   11KB  86.4MB/s   00:00    
salmon_quant.log                              100% 5193    53.8MB/s   00:00    
quant.sf                                      100% 5682KB 314.1MB/s   00:00    
cmd_info.json                                 100%  290     3.5MB/s   00:00    
lib_format_counts.json                        100%  597     3.8MB/s   00:00    
meta_info.json                                100% 1857     9.1MB/s   00:00    
observed_bias_3p.gz                           100%   54   349.0KB/s   00:00    
obs_gc.gz                                     100%  237     3.1MB/s   00:00    

However scp isn’t always the best tool to use for managing this kind of operation.

When you run scp it copies the entirety of every single file you specify. For an initial copy this is probably what you want, but if you change only a few files and want to synchronize the server copy to keep up with your changes it wouldn’t make sense to copy the entire directory structure again.

For this scenario rsync can be an excellent tool.

rsync

First lets add some new files to our salmon directory using the touch command. This command does nothing but create an empty file or update the timestamp of an existing file.

$ touch salmon/newfile1 salmon/newfile2 salmon/newfile3

Now we have everything set up we can issue the rsync command to sync our two directories

$ rsync -avz salmon ubuntu@remote-machine:/home/ubuntu/Course_Materials/salmon

The -v flag stands for verbose and outputs a lot of status information during the transfer. This is helpful when running the command interactively but should generally be removed when writing scripts.

The -z flag means that the data will be compressed in transit. This is good practice depending on the speed of your connection (although in our case it is a little unecessary).

Whilst we’ve used rsync in mostly the same way as we did scp it has many more customisation options as we can observe on the man page

$ man rsync

-a is useful for preserving filesystem metadata regarding the files being copied. This is particularly relevant for backups or situations where you intend to sync a copy back over your original at a later point.

--exclude and --include can be used to more granularly control which files are copied

Finally --delete is very useful when you want to maintain an exact copy of the source including the deletion of files only present in the destination. Let’s tidy up our salmon directory with this option.

How to remove files using rsync –delete

First we should manually delete our local copies of the empty files we created.

$ rm salmon/newfile*

consulting the output of man rsync synchronize the local folder with the remote folder again. This time causing the remote copies of newfile* to be deleted.

keep in mind that for rsync a path with a trailing / means the contents of a directory rather than the directory itself. Think about how using the --delete flag could make it very dangerous to make this mistake.

Don’t worry too much though, you can always upload a new copy of the data.

Solution

rsync -avz --delete salmon ubuntu@remote-machine:/home/ubuntu/salmon

SshFs

Sshfs is another way of using the same ssh protocol to share files in a slightly different way. This software allows us to connect the file system of one machine with the file system of another using a “mount point”. Let’s start by making a directory in /home/ubuntu/Desktop/data-shell to act as this mount point. Convention tells us to call it mnt.

$ mkdir /home/ubuntu/Desktop/data-shell/mnt

Now we can run the sshfs command

$ sshfs ubuntu@remote-machine:/home/ubuntu /home/ubuntu/Desktop/data-shell/mnt/

It looks fairly similar to the previous copying commands. The first argument is a remote source, the second argument is a local destination. The difference is that now whenever we interact with our local mount point it will be as if we were interacting with the remote filesystem starting at the directory we specified /home/sshuser.

$ cd /home/ubuntu/Desktop/data-shell/mnt/ 
$ ls -l

total 8
-rw-r--r-- 1 brewmaster brewmaster    0 Sep 30 07:07 file1
-rw-r--r-- 1 brewmaster brewmaster   95 Sep 30 05:36 notes.txt
-rw-r--r-- 1 brewmaster brewmaster    0 Sep 30 08:05 test
drwxr-xr-x 1 brewmaster brewmaster 4096 Sep 30 07:30 salmon

The files shown are not on the local machine at all but we can still access and edit them. Much like the concept of a shared network drive in Windows.

This approach is particularly useful when you need to use a program which isn’t available on the remote server to edit or visualize files stored remotely. Keep in mind however, that every action taken on these files is being encrypted and sent over the network. Using this approach for computationally intense tasks could substantially slow down the time to completion.

It’s also worth noting that this isn’t the only way to mount remote directories in linux. Protocols such as nfs and samba are actually more common and may be more appropriate for a given use case. Sshfs has the advantage of running over ssh so it require very little set up on the remote computer.

Wget - Accessing web resources

Wget is in a different category of command compared to the others in this section. It is mainly for accessing resources that can be downloaded over http(s) and doesn’t have a mechanism for uploading/pushing files.

Whilst this tool can be customised to do a wide range of tasks at its simplest it can be used to download datasets for processing at the start of a processing pipeline.

The data for this course can be downloaded as follows

$ wget https://github.com/cambiotraining/UnixIntro/raw/master/data/data-shell.zip -O course_data.zip

--2019-09-30 08:28:50--  https://github.com/cambiotraining/UnixIntro/raw/master/data/data-shell.zip
Resolving github.com (github.com)... 140.82.118.3
Connecting to github.com (github.com)|140.82.118.3|:443... connected.
HTTP request sent, awaiting response... 302 Found
Location: https://raw.githubusercontent.com/cambiotraining/UnixIntro/master/data/data-shell.zip [following]
--2019-09-30 08:28:50--  https://raw.githubusercontent.com/cambiotraining/UnixIntro/master/data/data-shell.zip
Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 151.101.16.133
Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|151.101.16.133|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 580102 (567K) [application/zip]
Saving to: ‘data-shell.zip’

data-shell.zip      100%[===================>] 566.51K  --.-KB/s    in 0.05s   

2019-09-30 08:28:51 (11.8 MB/s) - ‘data-shell.zip’ saved [580102/580102]

For large files or sets of files there are also a few useful flags

-b Places the task in the background and writes all output into a log file

-c can be used to resume a download that has failed mid-way

-i can take a file with a list of URLs for downloading

Where tools like wget shine in particular is in using URLs generated by web-based REST APIs like the one offered by Ensembl .

We can use bash to combine strings and form a valid query URL that meets our requirements.

$ wget https://rest.ensembl.org/genetree/member/symbol/homo_sapiens/BRCA2?prune_taxon=9526;content-type=text/x-orthoxml%2Bxml;prune_species=cow

When should we use which tool?

Ultimately there is no hard right answer to this and any tool that works, works. That said, can you think of a scenario where you think each of the following might be the best choice.

scp rsync wget

Solution

scp - Any time you’re copying a file or set of files once and in one direction scp makes sense

rsync - This is a good choice when you need to have a local copy of the whole dataset but there is also relatively frequent communication to update the source/destination. It also makes sense when the dataset gets too large to transfer regularly as a whole. If your rsync use is getting complex consider seperating the more dynamic files for sophisticated version control with something like git

wget - Whenever there is a single, canonical, mostly unchanging, web-based source for a piece of data wget is a good choice. Downloading all the data required for a script at the top with a series of wget commands can be good practice to organise your process. If you find wget limiting for this purpose a similar command called curl can be slightly more customisable for use in programming

Key Points

• ssh a secure method of running a bash terminal on a remote computer on which you have a user

• scp a method of copying files using the ssh protocol

• sshfs a method of using the ssh protocol to connect your local filesystem directly to a remote filesystem as if they were connnected

• rsync a different method of file transfer which only copies files that have changed

• wget a command which can download files from http links as if it were in a browser