Buɗe Secure Shell (OpenSSH): Kadan daga cikin komai game da fasahar SSH

Buɗe Secure Shell (OpenSSH): Kadan daga cikin komai game da fasahar SSH

Buɗe Secure Shell (OpenSSH): Kadan daga cikin komai game da fasahar SSH

Tun da matsakaiciyar mai amfani GNU/Linux Yawanci mutum ne mai ci gaba, sananne ko ƙwararren mutum a fagen. duniyar kimiyyar kwamfuta, wannan yana tilasta ku amfani da ƙwarewar kayan aiki ko fasaha na musamman. Kyakkyawan misali na wannan shine haɗin nesa zuwa wasu kwamfutoci ko na'urori, a hoto ko ta tasha. Misali, a matsakaiciyar masu amfani da Linux, SysAdmins ko DevOps, yawanci daga cibiyar sadarwa (gida, kasuwanci ko a cikin gajimare), suna haɗa nesa zuwa wasu kwamfutoci ta hanyoyi daban-daban ko fasahar da ake da su, kamar, RDP, Telnet, SSH, da dai sauransu.

kuma kamar da yawa Kwararrun IT mun riga mun sani, akwai kayan aikin software da yawa don wannan. Duk da haka, idan ya zo ga GNU / Linux Operating Systems, musamman dangane da Bauta, mafi mahimmanci da mahimmanci, shine ƙwarewar kayan aiki da aka sani da OpenSecureShell (OpenSSH). Dalilin da ya sa, a yau za mu fara da wannan kashi na farko game da SSH.

Ayyuka masu kyau tare da OpenSSH

Kuma kamar yadda aka saba, kafin shiga cikin maudu’inmu na yau game da shirin «Bude Secure Shell" (OpenSSH), don yin cikakken ra'ayi game da shi, za mu bar wa masu sha'awar waɗannan hanyoyin haɗi zuwa wasu wallafe-wallafen da suka gabata. Ta yadda za su iya gano su cikin sauƙi, idan ya cancanta, bayan kammala karatun wannan littafin:

"Wasu masu amfani na iya tunanin cewa mafi kyawun ayyuka yakamata a yi amfani da su akan sabobin ne kawai, kuma wannan ba haka bane. Yawancin Rarraba GNU/Linux sun haɗa da OpenSSH ta tsohuwa kuma akwai ƴan abubuwan da ya kamata a kiyaye". Ayyuka masu kyau tare da OpenSSH

OpenSSH yana ba da ingantaccen saiti na amintattun damar tunneling
Labari mai dangantaka:
OpenSSH 8.5 ya zo tare da UpdateHostKeys, gyara da ƙari

OpenSSH yana ba da ingantaccen saiti na amintattun damar tunneling
Labari mai dangantaka:
OpenSSH 8.4 an riga an sake shi, san mahimman canje-canjensa

Buɗe Secure Shell (OpenSSH): Gudanar da Shiga Mai Nisa

Buɗe Shell Secure (Buɗe SSH): Gudanar da shiga mai nisa

Menene SSH?

Sunan na "SSH" fasaha ya fito ne daga gajartar jimlar Turanci "Secure Shell", wanda a cikin Sifen "Shell mai tsaro" o "Tabbataccen Mai Fassarar oda". Koyaya, don ƙarin madaidaici kuma cikakken bayanin da fassarar, zamu iya kawo sakin layi masu zuwa:

“SSH tana tsaye ga Secure Shell ƙa’ida ce don amintacciyar hanyar shiga nesa da sauran amintattun sabis na cibiyar sadarwa akan hanyar sadarwa mara tsaro. Dangane da fasahar SSH, OpenSSH shine mafi shahara kuma ana amfani dashi. SSH yana maye gurbin ayyukan da ba a ɓoye ba kamar Telnet, RLogin, da RSH kuma yana ƙara ƙarin fasali da yawa." Wiki na Debian

“An tsara ka'idar SSH tare da tsaro da aminci a zuciya. Haɗin da ke amfani da SSH amintattu ne, ɗayan ɓangarori kuma an ɓoye duk bayanan da aka musanya. SSH kuma yana ba da sabis na canja wurin fayil guda biyu; daya shine SCP, wanda shine kayan aiki na ƙarshe wanda za'a iya amfani dashi kamar umarnin CP; ɗayan kuma shine SFTP, wanda shiri ne na mu’amala mai kama da FTP”. Littafin Jagoran Debian

"A yanzu haka akwai SSH daemons guda uku da ake amfani da su, SSH1, SSH2, da kuma OpenSSH daga mutanen OpenBSD. SSH1 shine farkon SSH daemon da ake samu kuma har yanzu shine mafi yawan amfani. SSH2 yana da fa'idodi da yawa akan SSH1, amma ana rarraba shi ƙarƙashin gauraye mai buɗe lasisin tushe. Ganin cewa, OpenSSH cikakken daemon kyauta ne wanda ke goyan bayan SSH1 da SSH2. Kuma shine, sigar da aka shigar akan Debian GNU/Linux, lokacin zabar shigar da kunshin 'SSH'. Littafin Tsaro na Debian

Me yasa ake amfani da fasahar SSH?

Me ya sa, SSH ne mai tsarin sadarwa wanda garanti a musayar bayanai (bayani / fayiloli) ta hanya mai lafiya da kuzari, daga kwamfuta abokin ciniki zuwa kwamfutar uwar garke.

Bugu da ƙari, wannan fasaha yana ba da tsari wanda aka yi la'akari sosai abin dogara, domin a cikinsa, fayiloli ko umarni da aka aika zuwa kwamfutar da aka nufa ana rufaffen su. Kuma duk wannan, yana ba da garantin cewa aika bayanai ana aiwatar da su ta hanya mafi kyau, don haka rage duk wani canji mai yuwuwa yayin aiwatar da shi, watsawa da karɓar sa.

A ƙarshe, yana da kyau a lura da hakan SSH Hakanan yana ba da tsarin da ya haɗa ko yana buƙatar tantance kowane mai amfani mai nisa, don tabbatar da cewa yana da izini don sadarwa tare da kwamfutar da aka nufa (server). Bugu da ƙari, wannan tsari yawanci, ta tsohuwa, yana faruwa a matakin amfani da tashoshi ko na'urorin haɗi, wato, ta wurin I.Interface Interface (CLI).

Menene Buɗe Secure Shell (OpenSSH)?

A cewar OpenSSH gidan yanar gizon hukuma, wannan shiri na kyauta kuma budadden yana bayyana kamar haka:

"OpenSSH shine babban kayan aikin haɗin kai don shiga mai nisa ta amfani da ka'idar SSH. Yana ɓoye duk zirga-zirgar zirga-zirga don kawar da saƙon saƙo, satar bayanai, da sauran hare-hare. Bugu da ƙari, OpenSSH yana ba da ingantattun fasalulluka masu aminci, hanyoyin tabbatarwa daban-daban, da ingantattun zaɓuɓɓukan daidaitawa."

Sannan ana kara dalla-dalla:

"OpenSSH suite ya ƙunshi kayan aiki masu zuwa: Ana yin ayyukan nesa ta hanyar ssh, scp, da sftp; gsarrafa maɓalli yana gudana tare da ssh-add, ssh-keysign, ssh-keyscan da ssh-keygen; da kuma gefen sabis yana aiki tare da sshd, sftp-server da fakitin wakili na ssh".

BudeSSH 9.0: Menene Sabo da Gyaran Bug

Yana da kyau a lura cewa a halin yanzu OpenSSH yana kan sigar sa na 9.0. Sigar da aka fitar kwanan nan (08/04/2022) wanda manyan sabbin littattafansa sune masu zuwa:

 • SSH da kuma SSHd: Yin amfani da Maɓallin NTRU Prime + x25519 mai haɓakawa azaman hanyar musayar tsoho ("sntrup761x25519-sha512@openssh.com").
 • SFTP-Server: Ba da damar haɓaka "kwafin-bayanai" don ba da damar kwafin fayiloli/ bayanai na gefen uwar garken, bin ƙira a cikin daftarin-ietf-secsh-filexfer-extensions-00.
 • SFTP: Ƙara umarnin "cp" don ba da damar kwafin fayil na gefen uwar garke suyi aiki akan abokin ciniki na sftp.

Don ƙarin bayani ko cikakkun bayanai game da waɗannan labarai, gyare-gyaren kwari da bayanan jigilar kaya, zaka iya samun damar masu zuwa mahada.

"An yi imanin NTRU algorithm na yin tsayayya da hare-haren da kwamfutoci masu ƙididdigewa ke kunnawa nan gaba kuma an haɗa su tare da musayar maɓallin X25519 ECDH (tsohuwar tsoho) azaman madadin ga duk wani rauni a cikin NTRU Prime wanda za'a iya gano shi nan gaba.".

Inda don ƙarin koyo game da SSH

Inda don ƙarin koyo game da SSH

Ya zuwa yanzu, mun kai ka'idar mafi mahimmanci don sani game da SSH da OpenSSH. Duk da haka, a cikin kashi-kashi na gaba kan wannan batu, za mu bincika kuma mu sabunta abin da aka riga aka yi bayani a cikin labarin da suka gabata. Amma nasa shigarwa, ku sanyi sigogi, da kyawawan ayyuka na yanzu (shawarwari), lokacin yin saituna na asali da na ci gaba. Da kuma yadda aiwatar da umarni masu sauƙi da rikitarwa ta hanyar fasahar ce.

Koyaya, don fadada wannan bayanin Muna ba da shawarar bincika masu zuwa hukuma kuma abin dogara akan layi:

 1. Wiki na Debian
 2. Littafin Jagoran Debian: Login Nesa / SSH
 3. Littafin Jagoran Tsaro na Debian: Babi na 5. Tsare ayyukan da ke gudana akan tsarin ku

Zagaye: Banner post 2021

Tsaya

A takaice, fasahar SSHGabaɗaya, fasaha ce mai girma kuma mai sauƙi wacce, idan an aiwatar da shi da kyau, tana ba da a abin dogara kuma amintaccen haɗin kai da hanyar shiga zuwa ga wasu ƙungiyoyi masu nisa, don samun dama ga ayyuka da ayyukan da aka bayar daga ciki. Kuma kwatankwacinsa na kyauta da bayyane, wato. «Bude Secure Shell" (OpenSSH) abin mamaki ne kyauta da budewa na guda, yadu samuwa da kuma amfani a kan duk Rarrabawar GNU / Linux na yanzu.

Muna fatan wannan littafin yana da amfani sosai ga gaba ɗaya «Comunidad de Software Libre, Código Abierto y GNU/Linux». Kuma kar ku manta da yin tsokaci game da shi a ƙasa, kuma ku raba shi tare da wasu akan shafukan yanar gizon da kuka fi so, tashoshi, kungiyoyi ko al'ummomin cibiyoyin sadarwar jama'a ko tsarin saƙo. A ƙarshe, ziyarci shafinmu a «DagaLinux» don bincika ƙarin labarai, da shiga tashar tashar mu ta hukuma Sakon waya daga FromLinux, Yamma rukuni don ƙarin bayani kan batun.


Abubuwan da ke cikin labarin suna bin ka'idodinmu na ka'idojin edita. Don yin rahoton kuskure danna a nan.

2 comments, bar naka

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

 1. Mai alhakin bayanan: Miguel Ángel Gatón
 2. Dalilin bayanan: Gudanar da SPAM, gudanar da sharhi.
 3. Halacci: Yarda da yarda
 4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
 5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
 6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.

 1.   kwari m

  Godiya mai yawa !!
  Zan mai da hankali ga littattafai masu zuwa
  Za ku iya gudanar da aikace-aikacen hoto ta amfani da uwar garken kuma ku gudanar da su akan abokin ciniki?

  1.    Linux Post Shigar m

   Gaisuwa, Khurt. Na gode da sharhinku. Ban tabbata ba, ya ƙirƙiri cewa zaku iya gudanar da aikace-aikacen hoto ta hanyar ssh akan mai watsa shiri mai niyya, amma ba aikace-aikacen uwar garken akan mai watsa shiri ba. Zan duba hakan ta wata hanya.