Vhura Yakachengeteka Shell (OpenSSH): Zvishoma zvese nezveSSH tekinoroji

Vhura Yakachengeteka Shell (OpenSSH): Zvishoma zvese nezveSSH tekinoroji

Sezvo iyo avhareji GNU/Linux mushandisi Inowanzova munhu akanyanya kufambira mberi, anozivikanwa kana nyanzvi mumunda. computer science nyika, izvi zvinokumanikidza kushandisa uye kugona maturusi ehunyanzvi kana matekinoroji. Muenzaniso wakanaka weizvi ndewe kubatanidza kure kune mamwe makomputa kana zvishandiso, nemifananidzo kana neterminal. Somuenzaniso, a avhareji yeLinux mushandisi, SysAdmins kana DevOps, kazhinji kubva kunetiweki (kumba, bhizinesi kana mugore), batanidza kure kune mamwe makomputa kuburikidza neakasiyana maprotocol kana matekinoroji aripo ayo, senge, RDP, Telnet, SSH, nevamwe vakawanda.

uye sezvakawanda IT nyanzvi isu tatoziva, kune izvi kune akawanda software zvishandiso. Zvisinei, kana zvasvika GNU / Linux Maitiro Ekushandisa, kunyanya maererano ne Servers, chinonyanya kukosha uye chakakosha, kugona kwechombo chinozivikanwa se OpenSecureShell (OpenSSH). Chikonzero nei, nhasi tichatanga neichi chikamu chekutanga nezve SSH.

Uye semazuva ese, tisati tapinda munyaya yanhasi nezvechirongwa «Vhura Shell Yakachengeteka» (OpenSSH), kuti tipe muono wakafara wayo, tichasiira avo vanofarira links dzinotevera dzemamwe mabhuku akare ane chokuita. Nenzira yekuti vanogona kuzviongorora zviri nyore, kana zvichidikanwa, mushure mekupedza kuverenga bhuku iri:

"Vamwe vashandisi vanogona kufunga kuti maitiro akanakisa anofanirwa kushandiswa kumasevha chete, uye izvi handizvo. Kwakawanda kweGNU/Linux kugoverwa kunosanganisira OpenSSH nekukasira uye pane zvinhu zvishoma zvekuchengeta mupfungwa". Maitiro akanaka neOpenSSH

Nyaya inoenderana:

OpenSSH 8.5 inosvika neKugadziridzaHostKeys, kugadzirisa uye nezvimwe

Nyaya inoenderana:

OpenSSH 8.4 yakatoburitswa, ziva shanduko dzayo dzinonyanya kukosha

Vhura Secure Shell (OpenSSH): Remote login manejimendi

Chii chinonzi SSH?

Zita re "SSH" tekinoroji inobva muchidimbu chechirevo chechirungu “Secure Shell”, zvinoreva muchiSpanish, "Secure Shell" o "Chengetedza Kurongeka muturikiri". Nekudaro, kune imwe rondedzero chaiyo uye yakazara nekududzira, tinogona kutaura ndima dzinotevera:

"SSH inomirira Chengetedza Shell iprotocol yeyakachengeteka yekuwana kure uye mamwe akachengeteka network masevhisi pane isina kuchengeteka network. Kana ari SSH matekinoroji, OpenSSH ndiyo inonyanya kufarirwa uye inoshandiswa. SSH inotsiva masevhisi asina kunyorwa seTelnet, RLogin, uye RSH uye inowedzera zvimwe zvakawanda. Debian Wiki

"SSH protocol yakagadzirwa nekuchengetedza uye kuvimbika mupfungwa. Kubatanidza uchishandisa SSH kwakachengeteka, rimwe bato rakatenderwa, uye data rese rakatsinhaniswa rakavharwa. SSH inopawo maviri mafaera ekufambisa masevhisi; imwe iSCP, inova chishandiso chekupedzisira chinogona kushandiswa sekuraira kweCP; uye imwe yacho iSFTP, inova chirongwa chekudyidzana chakafanana neFTP”. Debian Administrator's Manual

"Parizvino kune matatu anowanzo shandiswa madhimoni eSSH, SSH1, SSH2, uye OpenSSH kubva kune OpenBSD vanhu. SSH1 yaive yekutanga SSH daemon iripo uye ichiri kunyanya kushandiswa. SSH2 ine akawanda mabhenefiti pamusoro peSSH1, asi inogovaniswa pasi peyakasanganiswa yakavhurika-yakavharwa sosi rezenisi. Nepo, OpenSSH idhimoni remahara rinotsigira ese SSH1 uye SSH2. Uye ndizvo, iyo vhezheni yakaiswa paDebian GNU/Linux, pakusarudza kuisa iyo 'SSH' package. Debian Security Handbook

Sei uchishandisa SSH tekinoroji?

Sei, SSH Ndicho network protocol izvo zvinovimbisa a data exchange (ruzivo/mafaira) neimwe nzira yakachengeteka uye ine simba, kubva kumutengi komputa kuenda kune server komputa.

Uyezve, iyi tekinoroji inopa maitiro anonzi akavimbika zvakanyanya, nokuti, mairi, mafaera kana mirairo inotumirwa kukombuta yekuenda inovharwa. Uye izvi zvese, kuvimbisa kuti kutumira kwedata kunoitwa nenzira yakanakisa, nokudaro kuderedza chero shanduko inogona kuitika panguva yekuitwa kwayo, kutapurirana uye kugamuchirwa.

Pakupedzisira, zvakakodzera kucherechedza izvozvo SSH inopawo michina inosanganisira kana inoda kuvimbiswa kwechero mushandisi ari kure, kuitira kuti ive nechokwadi chekuti inotenderwa kutaurirana nekombuta yekuenda (server). Mukuwedzera, iyi nzira inowanzoitika, nekusingaperi, inoitika pamwero wekushandiswa kwematerminals kana consoles, kureva, kuburikidza neI nharaunda.Command Line Interface (CLI).

Chii chinonzi Open Secure Shell (OpenSSH)?

Maererano ne OpenSSH yepamutemo webhusaiti, chirongwa ichi chemahara uye chakavhurika chinotsanangurwa sezvizvi:

"OpenSSH ndiyo inotungamira yekubatanidza chishandiso chekupinda kure uchishandisa SSH protocol. Encrypts traffic yese kubvisa kuterera, kubiwa kwekubatanidza, uye kumwe kurwiswa. Pamusoro pezvo, OpenSSH inopa yakapfuma seti yezvakachengeteka tunneling maficha, akasiyana nzira dzechokwadi, uye dzakaomarara sarudzo dzekugadzirisa.

Uye zvinotevera zvinowedzerwa uye zvakatsanangurwa:

"Iyo OpenSSH suite ine zvinotevera zvishandiso: Mabasa ari kure anoitwa kuburikidza ne ssh, scp, uye sftp; iyo gkey management inomhanya ne ssh-add, ssh-keysign, ssh-keyscan uye ssh-keygen; and the sevhisi divi rinoshanda neiyo sshd, sftp-server uye ssh-agent mapakeji".

OpenSSH 9.0: Chii Chitsva uye Bug Fixes

Zvakakosha kucherechedza kuti ikozvino OpenSSH iri pane yayo vhezheni 9.0. Ichangoburwa vhezheni (08/04/2022) ine mikuru mikuru inotevera:

• SSH uye SSHd: Uchishandisa Yakakwenenzverwa NTRU Prime + x25519 hybrid kiyi seyakagadzika shanduko nzira ("sntrup761x25519-sha512@openssh.com").
• SFTP-Server: Kugonesa "copy-data" yekuwedzera kubvumira Server-side makopi emafaira/data, ichitevera dhizaini mugwaro-ietf-secsh-filexfer-extensions-00.
• SFTP: Yakawedzera "cp" murairo kubvumira server-side faira makopi kushanda pane sftp mutengi.

Kuti uwane rumwe ruzivo kana ruzivo nezve izvi nhau, gadziriso dzebug uye data rekutakura, unogona kuwana zvinotevera link.

"Iyo NTRU algorithm inofungidzirwa kuti inoramba kurwiswa kunogoneswa neamangwana quantum makomputa uye inopetwa neX25519 ECDH kiyi yekutsinhana (iyo yekare default) sekuchengetedza kurwisa chero kusasimba muNTRU Prime kunogona kuwanikwa mune ramangwana.".

Kupi kwekudzidza zvakawanda nezve SSH

Kusvika parizvino, tasvika dzidziso inonyanya kukosha kuziva nezveSSH uye OpenSSH. Nekudaro, muzvikamu zvinotevera pane iyi nyaya, isu tichaongorora uye nekuvandudza zvakatotsanangurwa muzvinyorwa zvakapfuura. Kana ari wake kuisirwa, yako mamiriro ekugadzirisa, uye iyo maitiro akanaka azvino (kurudziro), pakugadzira basic uye advanced settings. Uye sei ita mirairo iri nyore uye yakaoma kuburikidza nehunyanzvi hwakadaro.

Nekudaro, ye wedzera ruzivo urwu Tinokurudzira kuongorora zvinotevera zviri pamutemo uye zvakavimbika zvemukati online:

1. Debian Wiki
2. Debian Administrator's Manual: Remote Login / SSH
3. Debian Security Handbook: Chitsauko 5. Kuchengetedza masevhisi ari kushanda pane yako system

Resumen

Muchidimbu, SSH tekinorojiKazhinji, yakakura uye yakapusa tekinoroji iyo, kana ikaitwa zvakanaka, inopa a yakavimbika uye yakachengeteka yekubatanidza uye login michina kune vamwe zvikwata zviri kure, kuitira kuti uwane masevhisi uye zvinoshanda zvinopihwa kubva mukati maro. Uye iyo yemahara uye yakavhurika yakaenzana, kureva, «Vhura Shell Yakachengeteka» (OpenSSH) zvinoshamisa yemahara uye yakavhurika imwe nzira yakafanana, inowanikwa zvakanyanya uye inoshandiswa pane ese Kugoverwa kweGNU / Linux zvazvino.

Tinovimba kuti chinyorwa ichi chinobatsira zvikuru kune vese «Comunidad de Software Libre, Código Abierto y GNU/Linux». Uye usakanganwe kutaura pazviri pazasi, uye ugovane nevamwe pamawebhusaiti ako aunofarira, chiteshi, mapoka kana nharaunda dzesocial network kana mameseji masisitimu. Pakupedzisira, shanyira peji yedu yekumba pa «DesdeLinux» kuongorora dzimwe nhau, uye kujoina yedu yepamutemo chiteshi Teregiramu ye DesdeLinux, Madokero boka kuti uwane mamwe mashoko pamusoro penyaya yacho.