Qwalasela i-SSH yokufikelela ngaphandle kwegama eligqithisiweyo

Willy Klew

Imizuzu ye3

ssh

SSH, okanye uShell okhuselekileyo, liqokobhe elikhuselekileyo elisetyenziselwa ifayile ye ukufikelela kude kuzo zonke iintlobo zezixhobo ukuya kwiiseva, ngomjelo wetonela kwaye ukhuselwe ngokubethela, okunika ukhuseleko olukhusela, okanye ubuncinci lwenze kube nzima kakhulu, ukuba umntu wesithathu angabamba igama lomsebenzisi okanye ipassword. Kwimeko ye * Nix, sinayo le protocol ifumaneka nge-OpenSSH, iseti yezisombululo zabaxhasi ezifumaneka kulo lonke usasazo lweLinux kunye namaqonga ahambelana ne-BSD.

Ngoku, ukuba i-SSH isinika inqanaba elifanelekileyo lokhuseleko, kutheni le nto sifuna ukuyisebenzisa ngaphandle kwesidingo sokufaka iphasiwedi? Kunokubakho izizathu ezininzi, kodwa esona siqhelekileyo sivelise ukuba umvelisi yimfuneko yokungena kude ngokuhamba ngeskripthi kwaye wenze imisebenzi ephezulu kakhulu, kwaye kukuba njengoko sisazi kakuhle akucebisi ukubeka loo datha nakweyiphi na into ebhaliweyo. Ukusombulula le ngxaki siza kubona uvelisa njani amaqhosha e-SSH ukuze ukwazi ukungena kude ngaphandle kwesidingo segama eligqithisiweyo.

Oku kufuna ukuba yenza isitshixo esidlangalaleni kunye nesitshixo sangasese: eyokuqala iya kugcinwa kwiserver esiya kuthi sifike kuyo kwaye njengoko igama layo libonisa ukuba singathumela okanye sabelane ngayo, kwaye eyesibini iya kugcinwa kwisixhobo (ikhompyuter, i-smartphone, ithebhulethi) apho siya khona ukufikelela kwiseva, kwaye kufanele ukuba kunjalo igcinwe ngenyameko enkulu kwaye isetyenziswa sithi okanye ngabantu esibathembileyo.

Ngenxa yoko kukhankanyiweyo kumhlathi odlulileyo, kubalulekile ukuba ubeke ingxelo yokuba olu hlobo lwesisombululo lufuna uxanduva olukhulu kakhulu kukhathalelo lwezixhobo esiza kungena kuzo kwiserver, kwaye ke kukuba nabani na onokufikelela baya kuba nakho ukungena ngaphandle kwesidingo sokwazi igama eligqithisiweyo, umngcipheko omkhulu wokhuselo. Ngale nto icacisiweyo, makhe sijonge ukuba singaqala njani, kwaye le nto iya kuba yeyokuqala ukuba idemon ye-SSH ifakwe kwiserver:

# apt-fumana ukufaka i-open-server

Ngoku kufuneka senze umkhombandlela we .ssh kulawulo lomsebenzisi:

# mkdir -p $ IKHAYA / .ssh

# chmod 0700 $ IKHAYA / .ssh

# chukumisa $ IKHAYA / .ssh / iikeyisi ezigunyazisiweyo

Sihlela ifayile / njll / ssh / sshd_config kwaye siyaqinisekisa ukuba le migca ilandelayo injengale ndlela:

Ubungqina be-Pubkey ewe

Ifayile egunyazisiweyo% h / .ssh / keys_keys

Ngoku siya kumthengi siyokwenza:

I-ssh-keygen -t rsa

Siza kuxelelwa ukuba isitshixo siyenziwa, kwaye siya kucelwa ukuba singene kwifayile eya kugcinwa kuyo (ngokungagqibekanga iya kuba semakhaya ethu, kwifolda ebizwa ngokuba yi / / ss / id_rsa). Singacinezela u-Enter kuba loo ndawo isisebenzela ngokugqibeleleyo, emva koko sicinezela u-Enter kwakhona la maxesha mabini siceliweyo faka ibinzana lokugqitha kuba, khumbula, siza kungena kude ngaphandle kokufaka nayiphi na idatha ukuze singafuni naliphi na ibinzana.

Ngoku ekubeni sinesitshixo esidlangalaleni, kufuneka sabelane ngaso nezo khomputha siza kudibana nazo. Ukuthatha ukuba iserver esithetha ngayo inedilesi 192.168.1.100, into ekufuneka uyenzile yile:

ssh-ikopi-id -i $ IKHAYA / .ssh / id_rsa.pub (imeyile ikhuselwe) 192.168.1.100

Emva kokukopa, siya kumenywa yenza ukungena ngemvume okude ukuvavanya amaqhosha, kwaye kufuneka kuthathelwe ingqalelo ukuba kule meko Ingcambu Yiakhawunti esiza kungena kuyo kwiserver, ke ukuba sifuna ukuyenza nomnye umsebenzisi kufuneka siguqule ingcambu kwiakhawunti yomsebenzisi esiza kwenza ngayo ukufikelela ngeSSH.

Ngoku kufuneka siqale kabusha iseva ye-SSH ukuze ithathe ubumbeko olutsha:

# /etc/init.d/ssh qala kwakhona

Ukusukela ngoku ukuya phambili, ukuba sifuna ukufikelela kwiserver yesibini kwaye sikwenze oko ngaphandle kokufaka igama eligqithisiweyo, kufuneka sikuthumele isitshixo esidlangalaleni, esisebenzisa nje ukuphinda inyathelo lokugqibela, sitshintsha idilesi yomsebenzisi kunye ne-IP njengoko kufuneka:

ssh-ikopi-id -i $ IKHAYA / .ssh / id_rsa.pub admin@192.168.1.228


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   isomisi sitsho
    yenzayo 4 iminyaka

    Enkosi ngolwazi kodwa akukho nto… akukho ndlela….
    Kudala ndizama kusasa kwaye ihlala ibuza iphasiwedi.
    Ngexesha elithile eladlulayo ndazama kwaye ndayiyeka ingenakwenzeka ngesizathu esinye….
    Ndenza isitshixo sam kwiMacbook yam, ndiyikope kwi-raspberry yam kwi ~ / .ssh /uthorKeys
    Ndiqwalasele i-sshd.conf kunye nokuqinisekiswa koluntu kunye nokuqinisekisa ukuba isikhombisi sezitshixo silapho kanye izitshixo zikhona. Ndiyiqala kwakhona i-raspberry kwaye xa ndiyidibanisa indibuza kwakhona iphasiwedi
    Yintoni enokusilela?

    Phendula kwindawo eyomileyo
    1.    isomisi sitsho
      yenzayo 4 iminyaka

      Emva kweeyure ezininzi ndizama izinto ezininzi, ndiye ndafumanisa ukuba ngomsebenzisi wam owenziweyo ayisebenzi, kodwa ngomsebenzisi ongagqibekanga obizwa ngokuba yi "ubuntu" isebenza okokuqala.
      Naliphi na ingcaciso yokuba kutheni le nto ingenzeka?
      Ukubulisa nokubulela

      Phendula kwindawo eyomileyo