Kwilizwe lethu zininzi, iimfihlo ezininzi ... andicingi ukuba ndingafunda ngokwaneleyo ukwazi uninzi lwazo, kwaye oku kunikwa yinto elula yokuba iLinux isivumela ukuba senze izinto ezininzi, kodwa zininzi izinto Kunzima kuthi ukubazi bonke.
Ngeli xesha ndiza kukucacisela ukuba ungayenza njani into eluncedo kakhulu, into ekufuneka yenziwe ngabaninzi benethiwekhi okanye yenkqubo, kwaye bakufumanise kunzima ukungafumani ndlela elula yokuyiphumeza:
Ungabagcina njani abasebenzisi be-cage ngokudibanisa nge-SSH
ikheji? … WTF!
Ewe.Ukuba nangasiphi na isizathu kufuneka sinike ukufikelela kwe-SSH kumhlobo wethu kwikhompyuter yethu (okanye iseva), kufuneka sihlale sikhathalela ukhuseleko kunye nozinzo lwekhompyuter yethu okanye iseva.
Kuyenzeka ukuba kutsha nje besifuna ukunika uPerseus SSH ukufikelela kwiserver yethu, kodwa asinakumnika naluphi na uhlobo lokufikelela kuba sinolungelelwaniso oluchukumisayo apho (siqulunqe izinto ezininzi, iipakeji esizifakileyo ngokukodwa, njl. Nokuba ndizama ukwenza nokuba lolona tshintsho lincinci kwiseva, kunokwenzeka ukuba yonke into izokumosha ihehe.
Ke Umenza njani umsebenzisi ngamalungelo asikelwe umda, kangangokuba angabinakho ukuphuma kwikheji yakhe (ekhaya)?
Masiqale ngokukhuphela ikhonkrithi, isixhobo esiza kusivumela ukuba senze oku:
1. Kuqala kufuneka sikhuphele i-JailKit server yethu.
wget http://ftp.desdelinux.net/jailkit-2.14.tar.gz
2. Emva koko kufuneka unzip iphakheji kwaye ufake ifolda evele nje:
tar xzf jailkit-2.14.tar.gz && cd jailkit-2.14
3. Emva kwexesha saqhubeka sihlanganisa kwaye sifaka isoftwareNdikushiya umfanekiso weskrini):
./configure
make
make install
4. Silungile, oku sele kufakiwe. Ngoku siqhubeka nokwenza ikheyiji eza kuthi iqulethe abasebenzisi bexesha elizayo, kwimeko yam ndiyenzile: / opt / ndayibiza ngokuba yi "jele", ke indlela iya kuba: / opt / ijele :
mkdir /opt/jail
chown root:root /opt/jail
5. Ikheji sele yenziwe, kodwa ayinazo zonke izixhobo eziyimfuneko ukuze abasebenzisi bexesha elizayo abaya kubakho basebenze ngaphandle kweengxaki. Ndiyathetha, ukuza kuthi ga ngoku ikheji iyenziwe, kodwa yibhokisi engenanto. Ngoku siza kubeka ehokweni ezinye izixhobo eziya kufunwa ngabasebenzisi bendawo:
jk_init -v /opt/jail basicshell
jk_init -v /opt/jail editors
jk_init -v /opt/jail extendedshell
jk_init -v /opt/jail netutils
jk_init -v /opt/jail ssh
jk_init -v /opt/jail sftp
jk_init -v /opt/jail jk_lsh
6. Ilungile, ikheyiji ikhona kwaye sele inayo izixhobo zomsebenzisi ... ngoku sifuna kuphela ... umsebenzisi! Masenze umsebenzisi Kira kwaye siza kuyifaka ehokweni:
adduser kira
jk_jailuser -m -j /opt/jail kira
cat /etc/passwd | grep jk_chroot
7. Kwaye u-voila, umsebenzisi sele evalelwe ... kodwa, yena uvalelwe i-SO, ukuze angadibanisi yi-SSH, kuba xa ezama ukudibanisa iserver ayimvumeli:
Kuya kufuneka sihlelele njl njl / kwifayile ye-passwd yekheji, oko kukuthi, kule meko inokuba njalo / opt / ijele / njl / ukudlula , kuyo siphawula kumgca womsebenzisi esiwenzileyo, kwaye songeza entsha enje:
kira: x: 1003: 1003 :: / home / kira: / bin / bash
Oko kukuthi, siya kuba nefayile enje passwd:
ingcambu: x: 0: 0: ingcambu: / ingcambu: / bin / bash
#kira: x: 1003: 1003: ,,,: / opt / ijele /./ ikhaya / kira: / usr / sbin / jk_lsh
kira: x: 1003: 1003 :: / home / kira: / bin / bash
Phawula iikopi zeziphumlisi kunye nabanye, kubalulekile ukuba ungalahli nanye kuzo
Emva kokwenza oku, umsebenzisi angangena ngaphandle kwengxaki 😀
Kwaye konke oko.
Isixhobo esisisebenzisela konke oku (ikhonkrithi) sebenzisa ngasemva chroot, yeyiphi eyona nto iphantse isebenzise zonke iikhosi. Nangona kunjalo ukusebenzisa iJailKit kuye kube lula kwikheji 😉
Ukuba umntu unengxaki okanye kukho into engahambi kakuhle, shiya iinkcukacha ezininzi kangangoko kunokwenzeka, andizithathi njengengcali kodwa ndiza kukunceda kangangoko ndinako.
Izimvo ezi-50, shiya ezakho
emva koko iya kuba yinto efana neemvume kwi-FTP? umdla
uhlala uphuma nayo yonke into obungazi nokuba ikhona, njengabasebenzisi abakwi-mysql xD
Akunjalo, kuba i-SSH ayifani ne-FTP. I-SSH liqokobhe, oko kukuthi, itheminali ... ubuya kuba kwisiphelo sendlela kwenye ikhompyuter okanye iseva, ungenza imiyalelo, uqalise iinkqubo, njl ... uya kwenza kangangoko umlawuli weseva ekuvumela 😉
hahahahaha nah yiza, kwenzeka ntoni ukuba ndipapashe izinto zobuchwephesha ... Oko kukuthi, ndiyathanda ukupapasha izinto ezincinci ezingathandwayo nezinomdla. Umzekelo, mna ngokwam andizicwangcisi ukupapasha into nge-Ubuntu entsha, kuba ndiyakholelwa ukuba abaninzi bazakuthetha ngayo ... nangona kunjalo, le nto uyifunda apha eposini, ayisiyonto ifundwa yonke imihla okanye akunjalo? 😀
Iminikelo elungileyo kakhulu enkosi
Kukho umgaqo obizwa ngokuba yi-sftp oyi-ftp kunye ne-Shell ekhuselekileyo kunye, nangona ingafani nokuqhuba i-FTP ngaphezulu kwe-SSH:
Phendula nge quote
Ewe ewe ngenene, kodwa ngokufaka i-SSH ngokuzenzekelayo ndizivalela ukuba ngubani na odibanisa esebenzisa i-SFTP, kuba njengoko usitsho, i-SFTP ngenene yi-SSH + FTP
Phendula nge quote
Imifanekiso ayinakubonwa !!! 🙁
Impazamo encinci yam hehe, ndixelele ngoku 😀
Ilungile. Enkosi 😀
kuhle kakhulu, ndiyalatha kwiintandokazi zam ukuba zifumaneke xa ndiyifuna lol
Enkosi, nayiphi na imibuzo okanye iingxaki, silapha ukukunceda
BanoPerseus kwikheji. http://i.imgur.com/YjVv9.png
HLEKA KAKHULU
xD
Unjani.
Uyazi, sisihloko endingaqhelananga naso kwaye bendikhe ndakhangela kwi-BSD (PC-BSD kunye neGhost BSD) kwaye ndiyifumana inomdla kwaye inemisebenzi enokuba luncedo kakhulu.
Ndizakugcina isalathiso kwaye ndikhangele kwi-BSD doc. Enkosi ngolwazi.
Bendingayazi nale nto, kuba khange ndicinge ukunika umntu i-SSH ukufikelela kuyo nayiphi na iiseva zam haha, kodwa xa ndifumana isidingo sokwenza njalo, bendifuna ukunika ukufikelela kodwa ngaphandle kwento yokuba umntu ngempazamo enze into engakhange ayenze kufuneka 😀
Andizange ndizame oku kwiinkqubo ze-BSD, ke andinakukuxelela ukuba izakusebenza, kodwa ukuba ujonga indlela yokuchaphazela i-BSD, kufanele kuphume into
Enkosi ngezimvo zomhlobo 🙂
Molo, ndisebenzisa iFreeBSD kwaye kunjalo i-jailkit isebenza enyanisweni kwizibuko
Uyifaka ngalo myalelo
cd / usr / amazibuko / amaqokobhe / iijelekit / && yenza ufakelo lucoceke
Okanye ngepakethe ye ftp
I-pkg_add -r ikhonkco lejele
Kuqwalaselo kuphela (kira: x: 1003: 1003 :: / home / kira: / bin / bash)
Kuya kufuneka wongeze i-tcsh okanye i-sh, ngaphandle kokuba ufake i-bash kwaye wongeze le ndlela
/ usr / yengingqi / bin / bash
Kwaye ezinye iinkcukacha ezimbalwa, kwi-Ghost BSD kufanele ukuba ibe yinkqubo efanayo ngokulula njengoko isekwe kwiFreeBSD
Phendula nge quote
Kukhulu, bendikulindele; Ngaba uyazi ukuba iyasebenza eCentos ??; enkosi.
Khange ndiyivavanye kwiCentos, kodwa ewe kufuneka isebenze :)
Ngapha koko ndiyakhumbula ukuba uninzi lusebenzise esi sixhobo sinye kwii-Centos nakwi Red server server Hat
Ndiyabulela kakhulu. Iya ngqo kwiibhukumaka.
Enkosi kuwe ngokuphawula 🙂
Kulunge kakhulu "iqhinga", iluncedo kakhulu kubalawuli be-sys. Kodwa kungcono, kubhalwe kakuhle. Yintoni enye onokuyifuna.
Ndiyabonga kakhulu ngegalelo.
Enkosi, enkosi kakhulu ngengcaciso yakho 😀
Phendula nge quote
Indumiso SSH haha
Ndakhe ndazama ukwenza ikheji ye-ssh kodwa kwisitayile sendabuko kwaye inyani kukuba ayikaze iphume ngokuchanekileyo. Ukuba ikheyiji yayibaleka, yayingenayo ne-bash, oko kukuthi, yayiqhagamshele kwaye kwakungekho nto ishiyekileyo haha, ukuba iqokobhe lalibaleka, linokunyuka kulawulo lolawulo kunye ne-quilombos ezininzi haha kodwa le ntolongo yejele yintonga, yenza zonke ezo zinto ... Kucetyiswe kakhulu
haha enkosi.
Ewe, eneneni i-SSH iyamangalisa ngenxa yento esivumela ukuba siyivumele, eneneni ingekho ngaphezulu kwenkqubo evumayo ... hooray yeLinux! … Haha.
Molo, umbuzo!
Kutheni utshintsha ikhaya ukusuka (1) / opt / ijele /./ ikhaya / kira ukuya (2) / ekhaya / kira
Kuya kufuneka sihlele ifayile njl / idlulise ikheji, oko kukuthi, kule meko iya kuba / opt / ijele / njl / ukudlula, kuyo sinika ingxelo kumgca womsebenzisi esiwenzileyo, kwaye sidibanise entsha enje:
kira: x: 1003: 1003 :: / home / kira: / bin / bash
Ngamanye amagama, ifayile ye-passwd inokujongeka ngoluhlobo:
ingcambu: x: 0: 0: ingcambu: / ingcambu: / bin / bash
(1) #kira: x: 1003: 1003: ,,,: / opt / ijele /./ ikhaya / kira: / usr / sbin / jk_lsh
(2) kira: x: 1003: 1003 :: / ekhaya / kira: / bin / bash
Molweni 🙂
Ukuba oko akusetiwanga, ukufikelela kwe-SSH akusebenzi, umsebenzisi uzama ukunxibelelana kodwa ugxothwe ngokuzenzekelayo ... kubonakala ngathi yiphutha okanye ingxaki ngetoliki eziswa yiJailKit, kuba xa usenza olu tshintsho uxelela ukuba isebenzise inkqubo yesiqhelo ye-bash, yonke into iyasebenza.
Ndisayivala iseshoni: C
Sebenzisa 10.1 x64
Molo ndiyifakile le nto kwaye isebenza kakuhle kakhulu kwi-centos = D.
kodwa idua yam injengokudlulileyo ukongeza eminye imiyalelo umzekelo kumsebenzisi wasentolongweni
awunakho ukuqhuba svn co command http://pagina.com/carpeta
Ndiyathetha, lo myalelo awukho kubasebenzisi bejele kule meko njengakudala ukongeza le miyalelo entolongweni kwaye zininzi ezinye izinto endifuna ukuzongeza.
Molo unjani 🙂
Ukuba ufuna ukwenza umyalelo «svn» kwiJele unomyalelo jk_cp
Yiyo i:
jk_cp / opt / ijele / / bin / svn
Oku kucinga ukuba i-svn yokubini okanye enokuphunyezwa yile:
Kwaye mayibe yi-Cage / Jail ibe: / opt / ijele /
Uya kufumana imiyalelo exhomekeke kwabanye, oko kukuthi, ukuba wongeza umyalelo «pepe» uya kubona ukuba kufuneka wongeze «federico», kuba «pepe» ixhomekeke kwi «federico» ukuba iphunyezwe, ukuba uyakufumana oku ke ukongeza imiyalelo eyimfuneko kwaye sele 😉
Kulungile, ndiyayivavanya ngoku, kwaye ndikuxelele okwenzekileyo, enkosi kakhulu = D
Ngethamsanqa
Ndikwazile ukwenza le nto ubundixelele yona kodwa ngale ndlela kwaye ngokuzenzekelayo indibhaqile ngaphandle kwengxaki Lo yayingumyalelo endandiqhele ukusebenzisa ngawo ubhukuqo.
jk_cp -j / ekhaya / jaul svn
Ndisebenzisa iisenti xP kwaye mhlawumbi yahlukile kodwa intle
ngoku ndingathanda ukwazi ukuba zeziphi iilayibrari ezinje nge-svn kodwa ngoku ndingathanda ukuqokelela ngoba masithi ndifuna ukusebenzisa umyalelo onje
./configure kwaye uphawule impazamo
./configure.lineno: umgca 434: expr: umyalelo awufunyenwanga
Andizukwazi ukuba zeziphi iilayibrari esele ndizifakile ziyintoni i-mysql kunye nezinye ukuba zidibanisa ngaphandle kwejele kodwa hayi ngaphakathi kwejaui.
uxolo ngokwenzela ingxaki.
ps: kuya kufuneka ubeke isikhokelo endikuxelele kona malunga nomyalelo osetyenziswe kwi-centos =) imibuliso.
Jonga, xa ndikuxelela ukuba awufumani myalelo (apha) into yokuqala kukufumana lo myalelo:
whereis exprNje ukuba ifunyenwe (/ usr / bin / expr kunye / usr / bin / X11 / expr) siyikopa kwiJele ngejk_cp 😉
Zama oku ukubona.
Ewe, sendivele ndihlele iposti kwaye ndongeza ukuba iyasebenza kwiCentos 😀
Enkosi kakhulu ((:
Enkosi ngegalelo…
Molo unjani?
Molo mfo! Ukusuka eChile ndiyabulisa. Ukude njengam! INDLELA YOKUBONISA UKUHLEKA!. Ukuwola. Iposi lakho libe luncedo olukhulu kum!
Enkosi ngengcaciso yakho 😀
Enkosi kakhulu ngeposi, indincede kakhulu, kodwa ngelishwa kwinxalenye ye
////////////////////////////////////////////////////////////// ////////////////////////////////////////////////////////////// ////////////////////////
Kuya kufuneka sihlele ifayile njl / idlulise ikheji, oko kukuthi, kule meko iya kuba / opt / ijele / njl / ukudlula, kuyo sinika ingxelo kumgca womsebenzisi esiwenzileyo, kwaye sidibanise entsha enje:
kira: x: 1003: 1003 :: / home / kira: / bin / bash
Ngamanye amagama, ifayile ye-passwd inokujongeka ngoluhlobo:
ingcambu: x: 0: 0: ingcambu: / ingcambu: / bin / bash
#kira: x: 1003: 1003: ,,,: / opt / ijele /./ ikhaya / kira: / usr / sbin / jk_lsh
kira: x: 1003: 1003 :: / home / kira: / bin / bash
///////////////////////////////////////////////////////// //// ///////////////////////////////////////////////
Indibangela impazamo enye, ndiyathetha, ndiyishiya njengoko injalo, kwaye indiqhobosha kwisiphelo sendlela xa ndidibanisa ,,, .., ndihlomla emgceni ndongeze enye ukuyiguqula njengoko ubonisile, kwaye iyandixhasa….
Faka ingxelo yokugqibela "yejelekit-2.16.tar", nokuba wenze iskripthi ukugcina ixesha, apha ngezantsi:
///////////////////////////////////////////////////////// // ////////////////////////////////////////////////////
#! / bin / ibash
wget http://olivier.sessink.nl/jailkit/jailkit-2.16.tar.gz
I-tar -zxvf ijele-2.16.tar.gz
I-cd yejele-2.16
./configure
enza
ukwenza ukufaka
Phuma
////////////////////////////////////////////////////////////// ///////////////////////////////
Ngokucacileyo kuqala bangena njenge "ingcambu" ...
Ndingayisombulula njani impazamo mfondini ????
Uxolo, sele ndiyifumene, bendenze impazamo malunga nefolda yasekhaya, kodwa ndinentandabuzo enkulu, ndingayifumana njani ukuze indivumele ndiphumeze umyalelo "wesikrini", ndizama ukuyisebenzisa (kumsebenzisi ovalelweyo) , kodwa ayisebenzi ... Enye into kukuba, ndimenza njani lo msebenzisi uvalelweyo ukuba aqhube inkqubo yewayini kwi-exe ayibeke nje ngaphakathi ekhayeni lakhe, inokuba njani?
molo, kulungile kakhulu tuto! Ndimtsha kwezi meko, ndinombuzo ...
Ngokuphathelele ukhuseleko, ndiyabona ukuba kwingcambu yayo ineefolda ezininzi, ngaba ziyimfuneko? Ndifuna ukuba abe nokufikelela kwifolda yakhe (i-ftp-upload kunye ne-ssh-execute) yokuqhuba isicelo, zeziphi iifolda anokuzicima kwiingcambu? okanye ayibonisi nayiphi na ingozi kum? Ndiyaluxabisa uncedo lwakho kwangaphambili, imibuliso!
@ KZKG ^ Gaara, enkosi ukulunga xa ubeka impazamo ye-wheezy kodwa nohlobo lwe-jailkit-2.16.tar.gz ocebise ukuba bayilungise
http://olivier.sessink.nl/jailkit/jailkit-2.16.tar.gz
Ndicinga ukuba ndiza kuyidlulisela kwiPDF, jojo .. ukuya ehokweni kwaye enkosi wn 😀
Ndiyabulisa mhlobo, ndinombuzo:
Masithi sinomsebenzisi ogama lingu "vavanyo".
Umbuzo ngulo, ifayile / ikhaya / uvavanyo / .ssh / iindawo ezaziwayo ezikuloo msebenzisi, ngaba yile fayile inye okanye ayifakwanga ngumsebenzisi?
Zama oku. Kuyenzeka ngale ndlela ukuthintela ukukhangela kwelinye ikhaya labanye abasebenzisi.
Okokuqala, enkosi ngeposi! Iluncedo kakhulu kum; kodwa ndinamathandabuzo amabini, kwaye oku kuvela kwimeko endinayo:
Ndidinga ukudala abasebenzisi be-N abanokufikelela okuzimeleyo nabucala emakhayeni abo, umsebenzisi ngamnye unokufikelela kuphela kwikhaya lakhe ukuze afake, aguqule kwaye acime iifayile eziqulethwe apho ngaphandle kokuhambahamba kwabanye (sele ndinalo eli nqaku). Ayifuni ukufikelela kwi-ssh.
1. Ngaba kuya kufuneka wenze ikheji yomsebenzisi ngamnye, okanye ngaba ikhona indlela yokuba nabasebenzisi abohlukeneyo kwikheyiji efanayo kodwa ngamnye une "yabucala" isikhombisi?
2. Xa ungena (ngomthengi we-FTP) zonke izikhombisi ezenziwe sisixhobo zibonisiwe, ngaba ikhona indlela yokubonisa ifowulda icocekile? Okanye ndenze into embi apha endleleni?
Isifundo esihle kakhulu! Kuye kwaba luncedo olukhulu kum, ndiyayivavanya nge-2.17 kwi-Ubuntu 14.04 kwaye isebenza kakuhle. Ngoku ndinomceli mngeni ulandelayo, nje ukuba umsebenzisi avalelwe ngaphakathi ukuze angakwazi ukuya nakweyiphi na indlela, ndifuna ukuba abenokwazi ukubona umxholo wefayile ekwenye indlela. Ndizamile ngekhonkco lokomfuziselo kodwa xa ndizama ukwenza umsila okanye ikati kule fayile indixelela ukuba ayikho nangona ndingena kumsebenzisi ndingadwelisa loo fayile kwikhaya lekheji.
Ukuba ungandinceda ndingavuya kakhulu, enkosi kwangaphambili
Molo, ndiyilandile yonke incwadana kwaye xa ungena nge-ssh ivala ngokuzenzekelayo, umkhondo:
Ngomhla we-4 ka-Disemba 19: 20: 09 toby sshd [27701]: Iphasiwedi eyamkelweyo yovavanyo ukusukela ngo-172.16.60.22 izibuko 62009 ssh2
Ngomhla we-4 kaDisemba 19: 20: 09 toby sshd [27701]: pam_unix (sshd: session): Iseshoni ivulelwe uvavanyo lomsebenzisi ngu (uid = 0)
Ngomhla we-4 ka-Disemba 19: 20: 09 ngo-jk_chrootsh [27864]: ngoku kungena ejele / ukuphuma / ukuvalelwa entolongweni kuvavanyo lomsebenzisi (1004) ngeempikiswano
Dec 4 19:20:09 toby sshd [27701]: pam_unix (sshd: session): iseshoni ivaliwe kuvavanyo lomsebenzisi
Gracias
Hayi xa ndenza inyathelo lokugqibela lokunika i-ssh ukufikelela kumsebenzisi, isavala uqhagamshelo 🙁
Ngaba kunokwenzeka ukuba lo msebenzisi uyile ukuba atshintshele kwingcambu? eyakho -ngcambu? ayindivumeli. Ingenzeka njani? Enkosi ngoncedo lwakho
Enkosi kakhulu kwisifundo, bendisidinga ukwenza umsebenzisi onokusebenzisa i-clonezilla ukwenza umfanekiso kwaye ayikopishe kwiseva yelinye ilizwe kodwa angabinakho ukubhukuda naphi na apho afuna khona
Kulungile! Ndingadinga ukwazi into.
Ngaba kunokwenzeka ukuba ungene njenge-ROOT usebenzisa i-FTP kwaye ufumane ezi mvume, ukuyilawula nge-FTP hayi nge-SSH? Masithi njengokwenza unxibelelwano, isitayile setonela okanye into enjalo. Yenziwa njani? Qwalasela ifayile yeVSFTPD?
Enkosi kakhulu!