Kuphunzira SSH: Zosankha ndi Zosintha Zosintha - Gawo I

Sakani Linux Post | | ofunsira, Maphunziro / Maupangiri / Malangizo

Palibe ndemanga

Kuphunzira SSH: Zosankha ndi Zosintha Zosintha

Kuphunzira SSH: Zosankha ndi Zosintha Zosintha

Mu gawo lachitatu ili "Kuphunzira SSH" tiyamba kufufuza ndi kudziwa za Zosankha zamalamulo a SSH ndi magawo pulogalamu ya OpenSSH, kupezeka kuti mugwiritse ntchito poyendetsa lamulo mu terminal.

Zomwe zingakhale zothandiza kwambiri, chifukwa, OpenSSH Ndilo lomwe limayikidwa kwambiri komanso logwiritsidwa ntchito kwambiri ma protocol akutali ndi otetezeka, pafupifupi ambiri a Machitidwe aulere ndi otseguka, bwanji GNU / Linux.

Kuphunzira SSH: Kuyika ndi Kusintha Mafayilo

Kuphunzira SSH: Kuyika ndi Kusintha Mafayilo

Koma ndisanayambe izi kufalitsa za kasinthidwe zosankha ndi magawo de A La Pulogalamu ya OpenSSH, kupitiriza "Kuphunzira SSH", tikupangira kuti pamapeto powerenga izi, mufufuze zotsatirazi zolemba zokhudzana nazo m'mbuyomu:

Nkhani yowonjezera:
Kuphunzira SSH: Kuyika ndi Kusintha Mafayilo

 Tsegulani Secure Shell (OpenSSH): Chilichonse chokhudza ukadaulo wa SSH
Nkhani yowonjezera:
Tsegulani Secure Shell (OpenSSH): Chilichonse chokhudza ukadaulo wa SSH

Kuphunzira SSH: Kupita patsogolo kwa protocol

Kuphunzira SSH: Kupita patsogolo kwa protocol

Kuphunzira za zosankha za SSH ndi magawo

Zofunikira komanso zofunika kwambiri pa lamulo la SSH ndikudziwa kuti amalola kuti aphedwe pogwiritsa ntchito zina zosankha kapena magawo, amene ali monga mwa iwo buku lamakono la ogwiritsa ntchito, zotsatirazi:

ssh [-46AaCfGgKkMnqsTtVvXxYy] [-B bind_interface] [-b bind_address] [-c cipher_spec] [-D [bind_address:] port] [-E log_file] [-e escape_char] [-F configkfile] [11] -i identity_file] [-J kopita] [-L adilesi] [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port] [-Q query_option] [-R adilesi] [ -S ctl_path] [-W host:port] [-w local_tun[:remote_tun]] kopita [command [kukangana ...]]

Chifukwa chake, chotsatira tiwona zina zofunika kwambiri kuzidziwa, kuchita komanso kuchita bwino, ngati kuli kofunikira kapena kothandiza nthawi iliyonse. Ndipo awa ndi awa:

Zosintha zaposachedwa ndi zosankha za SSH

Zowona

  • 4 ndi 6: Imakakamiza protocol ya SSH kugwiritsa ntchito ma adilesi a IPv4 kapena IPv6 okha.
  • -A ndi -a: Yambitsani kapena kuletsa kutumizirana mauthenga kuchokera kwa wothandizira, monga ssh-agent.
  • -C: Pemphani kupanikizidwa kwa data yonse (kuphatikiza stdin, stdout, stderr, ndi data yolumikizira).
  • -f: Imalola zopempha za SSH kuti zipite chakumbuyo musanayambe kulamula. Ndiko kuti, imayika kasitomala kumbuyo kusanachitike lamulo. KAPENAzothandiza kulowa maziko achinsinsi.
  • -G: Imakulolani kuti mupeze, monga yankho kuchokera kwa wolandira kopita, kusindikiza kwanu kasinthidwe ka SSH kwanuko.
  • -g: Amalola olandira akutali kuti alumikizane ndi madoko omwe amatumizidwa kwanuko. Ngati ikugwiritsidwa ntchito pamalumikizidwe angapo, njira iyi iyenera kufotokozedwa mwatsatanetsatane.
  • -K ndi -k: Imayatsa kapena kuletsa kutsimikizika kwa GSSAPI ndi kutumiza mbiri ya GSSAPI ku seva.
  • -M: Imakulolani kuyika kasitomala wa SSH mu "master" mode kuti mugawane kulumikizana kwa TCP/IP ndi ena otsatizana.
  • -N: Imakulolani kuti mulepheretse kutsata malamulo akutali. Zothandiza pongokonza kutumiza madoko.
  • -n: Ilozeranso zolowa zokhazikika kuchokera /dev/null. zothandiza kwa pamene SSH sndipo imathamangira chakumbuyo.
  • -q: Yambitsani mode chete. Kupangitsa kuti mauthenga ambiri ochenjeza ndi ozindikira atsekedwe.
  • -s: Zimakulolani kuti mupemphe kuyitanidwa kwa subsystem (remote command set) pa dongosolo lakutali.
  • -T ndi -t: Imayimitsa ndikuyatsa kupanga mapu a pseudo-terminal pamakina akutali.
  • -V: Imakulolani kuti muwone nambala ya version za phukusi la OpenSSH lomwe linayikidwa.
  • -v: Imakulolani kuti muyambitse verbose mode, pkupangitsa kuti isindikize mauthenga ochotsa zolakwika za momwe ikuyendera.
  • -x ndi x: Yambitsani ndi kuletsa Kutumiza kwa seva ya X11, kuti mupeze mawonekedwe a X11 omwe ali kutali.
  • -Y: Imathandizira kutumiza kodalirika kwa X11, komwe iwo sali pansi pa X11 zowongolera zowonjezera chitetezo.
  • -y: Tumizani zambiri zolembetsera pogwiritsa ntchito tsamba la ndondomeko module syslog.

Zapamwamba

  • -B bind_interface: Zimalola kumanga adilesi ya IP ku kulumikizana kwa SSH, musanayese kulumikizana ndi wolandila kopita. Zomwe idzagwiritsidwa ntchito ngati adilesi yoyambira ya kulumikizana kwa SSH. Zothandiza pamakina omwe ali ndi ma adilesi opitilira amodzi.
  • -b kumanga_adilesi: Imakulolani kuti mutchule mu wolandila wamba, mawonekedwe a netiweki omwe adzakhala adilesi yolumikizira. Zothandiza pamakompyuta (makina) okhala ndi ma adilesi opitilira imodzi.
  • -c cipher_spec: Imakulolani kuti musankhe mawu achinsinsi omwe agwiritsidwe ntchito kubisa gawoli. Ichi (cipher_spec) ndi mndandanda wosiyanitsidwa ndi koma wa ma ciphers olembedwa motsatira zokonda.
  • -D kumanga_adilesi: doko: Amalola ndiKumeneko tchulani kutumiza kwa doko kwamphamvu pamlingo wa pulogalamu. Kugawa socket kuti mumvetsere doko kumbali yapafupi, yomangidwa ku adilesi yotchulidwa.
  • -E log_file: Zimalolayonjezerani zipika zowonongeka ku fayilo yolakwika, m'malo mwa zolakwika zachikhalidwe zomwe zimayendetsedwa ndi opareshoni.
  • -e escape_char: Imakulolani kuti muyike mawonekedwe othawa nawo magawo a terminal. Zosasintha ndi tilde ' ~'. Mtengo "palibe" umalepheretsa kuthawa kulikonse ndikupangitsa gawoli kukhala lowonekera.
  • -F config: Imakulolani kuti mutchule fayilo yosinthira kwa wina aliyense wogwiritsa ntchito. Ngati imodzi yaperekedwa, fayilo yosinthira general ( / etc / ssh / ssh_config ).
  • -ndi pkcs11: Imakulolani kuti mutchule PKCS#11 laibulale yogawana yomwe SSH iyenera kugwiritsa ntchito polumikizana ndi chizindikiro cha PKCS#11. Ndiko kuti kusankha fayilo ndi kiyi yachinsinsi yotsimikizira makiyi agulu.
  • -J kopita: Amalola ndiTchulani malangizo a kasinthidwe a ProxyJump, ku cpolumikizani ndi omwe akutsata poyambira kupanga kulumikizana kwa SSH ndi kulumpha khamu anafotokoza ndi wolandira kopita.
  • -L adilesi: Amalola ndiTchulani kuti maulumikizidwe ku doko la TCP lomwe lapatsidwa kapena socket ya Unix pa wolandila wakomweko (kasitomala) atumizidwa kwa wolandila ndi doko, kapena socket ya Unix, kumbali yakutali.
  • -l login_name: Imakulolani kuti mutchule wogwiritsa ntchito kuti alowe ku makina akutali. Izi zitha kufotokozedwanso pagulu lililonse mufayilo yosinthira.
  • -m mac_spec: Imakulolani kuti mutchule ma aligorivimu amodzi kapena angapo a MAC (khodi yotsimikizira uthenga) yolekanitsidwa ndi koma kuti mugwiritse ntchito polumikizana ndi SSH kuti ichitidwe.
  • -O ctl_cmd: Yang'anirani njira yowonjezerera pamalumikizidwe omwe akugwira ntchito, polola kuti mkangano (ctl_cmd) udulidwe ndikuperekedwa ku master process.
  • -o njira: Zimalola gwiritsani ntchito zosankha zomwe zafotokozedwa mufayilo yosinthira. Izi ndizothandiza pofotokoza zosankha zomwe palibe mzere wolamula wosiyana.
  • -p doko: Imakulolani kuti mutchule doko loti mulumikizidwe ndi wolandila akutali. Izi zitha kufotokozedwa pamunthu aliyense mufayilo yosinthira. Komabe, mtengo wosasinthika ndi 22, womwe ndi mtengo wamtundu wa SSH.
  • -Q query_option: Amalola kuchita cFunsani za ma aligorivimu othandizira, kuphatikiza: cipher, cipher-auth, help, mac, key, key-cert, key-plain, key-sig, protocol-version, ndi sig.
  • -R adilesi: Amalola ndiFotokozani kuti maulumikizidwe ku doko la TCP lomwe lapatsidwa kapena socket ya Unix pagulu lakutali (seva) liyenera kutumizidwa kumbali yakumaloko. Kupereka soketi kuti mumvetsere doko/soketi kumbali yakutali.
  • -S ctl_njira: Imakulolani kuti mutchule komwe kuli socket yolumikizirana, kapena chingwe "palibe" kuti mulepheretse kugawana.
  • -W host: doko: Imapempha kuti zolowa ndi zotuluka kuchokera kwa kasitomala zitumizidwe kwa olandira kudzera padoko lodziwika kudzera pa njira yotetezeka.
  • -w local_tun[:remote_tun]: Pemphani kutumizira zida zamsewu ndi zida za Tun zomwe zatchulidwa pakati pa kasitomala (local_tun) ndi seva (remote_tun).

Fotokozani Chigoba

Zambiri

Ndipo mu gawo lachitatu ili onjezerani zambiri izi Timalimbikitsa kufufuza zotsatirazi Kusintha kwa SSH, m'Chingerezi, kuwonjezera pakuchita zitsanzo pamawu amawu a SSH ena Fotokozani Chigoba. Ndipo monga, mu gawo loyamba ndi lachiwiri, kupitiriza kufufuza zotsatirazi zovomerezeka ndi odalirika pa intaneti za SSH ndi OpenSSH:

  1. Wiki ya Debian
  2. Buku la Debian Administrator: Remote Login / SSH
  3. Debian Security Handbook: Mutu 5. Kuteteza mautumiki omwe akuyenda pa dongosolo lanu

Kuzungulira: Banner post 2021

Chidule

Mwachidule, gawo latsopanoli lili pa "Kuphunzira SSH" Zikhala zothandiza kwambiri kwa ogwiritsa ntchito a Linux omwe amagwira ntchito kale ndi pulogalamuyi. Koposa zonse, kumveketsa kukayikira zina za kutsogolera, kothandiza komanso kogwira mtima ya chida chomwe. Kwa izi, gwiritsani ntchito bwino komanso zovuta kwambiri zolumikizira kutali, ndi kuthamanga makonda otetezeka komanso odalirika pazida zawo ndi nsanja, pogwiritsa ntchito protocol yolumikizira yakutali komanso yotetezeka.

Tikukhulupirira kuti bukuli ndi lothandiza kwambiri kwa anthu onse «Comunidad de Software Libre, Código Abierto y GNU/Linux». Ndipo onetsetsani kuti mwapereka ndemanga pansipa, ndikugawana ndi ena pamasamba omwe mumakonda, ma tchanelo, magulu, kapena madera omwe mumawakonda kapena mauthenga. Komanso, kumbukirani kupita patsamba lathu lanyumba pa «KuchokeraLinux» kuti mufufuze nkhani zambiri. Ndipo lowani panjira yathu yovomerezeka Telegalamu yochokera ku DesdeLinux kukudziwitsani, kapena gulu kuti mudziwe zambiri pamutu wamasiku ano kapena zina.


Zomwe zili m'nkhaniyi zikutsatira mfundo zathu za malamulo okonzekera. Kuti mufotokoze cholakwika dinani Apa.

Khalani oyamba kuyankha

Siyani ndemanga yanu

Anu email sati lofalitsidwa. Amafuna minda amalembedwa ndi *

*

*

  1. Wotsogolera pazosankhazi: Miguel Ángel Gatón
  2. Cholinga cha deta: Control SPAM, kasamalidwe ka ndemanga.
  3. Kukhazikitsa: Kuvomereza kwanu
  4. Kulumikizana kwa zomwe zafotokozedwazo: Zomwezo siziziwululidwa kwa anthu ena kupatula pakukakamizidwa mwalamulo.
  5. Zosunga: Zosungidwa ndi Occentus Networks (EU)
  6. Ufulu: Nthawi iliyonse mutha kuchepetsa, kuchira ndikuchotsa zidziwitso zanu.