Ssh Gushiraho muri Ubuntu

Ssh (Igikonoshwa cyizewe) Ikoranabuhanga rigufasha gucunga neza mudasobwa yawe binyuze muburyo bwizewe. Ssh itanga ibisabwa byose, harimo ijambo ryibanga, kandi nanone transpite protocole iyo ari yo yose. Gukora neza, ntibigomba gushyirwaho gusa, ahubwo byagenwe. Byaba bijyanye nigicuruzwa cyiboneza ryibisobanuro twifuza kuganira muriyi ngingo, dufata verisiyo iheruka ya sisitemu y'imikorere ya Ubuntu kurugero, izahabwa seriveri.

Kugena SSH muri Ubuntu

Niba utarangije kwishyiriraho kuri seriveri na PC yabakiriya, bigomba gukorwa mubyo mbere, inyungu zose ziroroshye kandi ntizifata umwanya munini. Hamwe nigitabo kirambuye kuriyi ngingo uhura nindi ngingo kumurongo ukurikira. Irerekana kandi uburyo bwo guhindura dosiye iboneza no kugerageza ssh, none uyumunsi tuzibanda gato kubindi bikorwa.

Soma Ibikurikira: Gushiraho Ssh-Seriveri muri Ubuntu

Gukora urufunguzo rwa RSA

Muri ssh nshya yashizwemo, nta nkuru igaragara kugirango uhuze na seriveri kubakiriya na proversa. Ibipimo byose bigomba gushyirwaho intoki nyuma yo kongeramo ibice byose bya protocole. Urufunguzo rwinshi rurimo gukora ukoresheje RSA algorithm (kugabanya amazina ya rutare, Shamir na Adleman abaterankunga). Ndashimira iyi Cryptosystem, urufunguzo rwihishe binyuze muri algorithm idasanzwe. Kugirango ukore urufunguzo rufunguye, ugomba gusa kwinjira mumategeko akwiye muri konsole hanyuma ukurikize amabwiriza agaragara.

Jya kukazi hamwe na "Terminal" nuburyo ubwo aribwo bwose bworoshye, kurugero, mugukingura binyuze muri menu cyangwa urufunguzo rwo guhuza Ctrl + Alt + T.

Koresha terminal muri Ubuntu kugirango urobe ssh

Injira ssh-Keygen itegeko, hanyuma ukande urufunguzo rwa Enter.

Kora urufunguzo rwa Ssh ukoresheje Console muri sisitemu y'imikorere ya ubuntu

Bizasabwa gukora dosiye aho urufunguzo ruzakizwa. Niba ushaka kubisiga aho byatoranijwe na retault, kanda gusa kuri Enter.

Hitamo dosiye kugirango uzigame urufunguzo rwa Ssh Protocol muri Ubuntu

Urufunguzo rusange rushobora kurindwa ninteruro ya kode. Niba ushaka gukoresha ubu buryo, andika ijambo ryibanga mumyandikire. Inyuguti zinjiza ntabwo zizerekanwa. Mumurongo mushya uzakenera kubisubiramo.

Kwinjira interuro yingenzi mugihe ukora urufunguzo rwa Ssh muri Ubuntu

Ubukurikira, uzabona integuza ko urufunguzo rwabitswe, kandi urashobora kandi kumenyera ishusho yacyo idahwitse.

Icyingenzi Cyingenzi Kurema Ssh muri sisitemu yo gukora Ubuntu

Ubu hari n'umugore abakiriya - ibanga na Gufungura gukoreshwa kugira ibindi Kwihuza hagati mudasobwa. Ushobora gusa bagomba Nzoshira urupfunguruzo Seriveri buryo kwemeza ssh ni ryiza.

Gukoporora urufunguzo Gufungura Seriveri

Hari ibintu bitatu uburyo urufunguzo Gukoporora. Buri wese muri bo azaba What cyane mu bihe bitandukanye igihe, urugero, bumwe mu buryo ntakora imirimo cyangwa si hakwiriye runaka Umukoresha. Turi yokwemera kurimbura Amahitamo bose atatu uhereye yoroheje kandi neza.

Ihitamo 1: ssh-Kopi-ID command

Itegeko ssh-Kopi-ID yubatswe mu sisitemu y'imikorere, bityo ntabwo ukeneye installation bigize y'inyongera kuko irangizwa ryarwo. Kwubahiriza Igaragaza Byoroheje Gukoporora urufunguzo. Mu Bihera, ugomba kwinjira mu ssh-Kopi-ID Gutumira @ remote_host, aho ukoresha @ remote_host ni izina rya mudasobwa kure.

Kopi ssh Urufunguzo biciye utility idasanzwe mu Ubuntu

Igihe watangura connect, namwe muzahabwa, Ikimenyetso na Umwandiko:

Iy'ukuri Host '203.0.113.1 (203.0.113.1)' ntashobora kuba wubatswe.

ECDSA Y'INGENZI igikumwe NI FD: FD: D4: F9: 77: Fe: 73: 84: E1: 55: 00: AD: D6: 6D: 22: Fe.

Uri neza wipfuza kubandanya ryafashije (YEGO / OYA)? Yego

Ugomba Kugaragaza Ihitamo yego gukomeza Ukwihuza. Inyuma y'ivyo, utility bazaba bwigenge gushaka urufunguzo nk'uko id_rsa.pub Idosiye, bikaba mbere yaremwe. Mu hakiri neza, bituma iyi izaba yagaragaje:

Gusangiza / BIN / ssh-URUFOTOZE-ID: info: kugerageza LOG in na Urufunguzo nshya (s), Kuri Akayunguruzo hanze ari vyo vyose Aready iyinjizaporogaramu

/ Gusangiza / BIN / ssh-Kopi-ID: info: 1 Key (s) Nugume Kuri yakorewe iyinjizaporogaramu - niba byatumye ubu ni installation imfunguzo nshya

Ijambobanga [email protected]'s:

Kugaragaza Ijambobanga Kuva ingabo kure kugira ngo utility ushobora kwinjira. igikoresho Gukoporora Ibyatanzwe Kuva: i Idosiye Leta urufunguzo ~ / .ssh / id_rsa.pub, hanyuma ubutumwa Kugaragara ku Mugaragaza:

Umubare y'ingenzi (S) Added: 1

Ubu ngerageza Kwinjira MU mashini, NA: "ssh '[email protected]'"

Kandi Kugenzura kugira ngo gusa Urufunguzo (s) ushaka biyongeraho.

Igisa nka uburyo Umwandiko ko urufunguzo umaze gutsinda zihetse ku A & Bya kure, kandi nta cyo cyose Na: i Ukwihuza bazaduka.

Ihitamo 2: Kwigana urufunguzo butimira binyuze ssh

Niba udashobora gukoresha utility hejuru, ariko hari password kwinjira mu kure ssh Seriveri, ushobora kohereza Umukoresha Urufunguzo intoki, bityo gutanga ibindi Kwemeza kiraro igihe isano. Rikoreshwa kuri iryo tegeko CAT ko azasoma Ibyatanzwe Kuva: Idosiye ku, hanyuma yoherezwa Seriveri. Mu console, uzaba ukeneye Injiza A Ikurikiranyanyuguti.

Cat ~ / .ssh / id_rsa.pub | Ssh Gutumira @ Remote_Host "mkdir -p ~ / .ssh && gukorakora ~ / .ssh / authorized_keys && chmod -r kujya = ~ / .ssh && Cat >> ~ / .ssh / authorized_keys."

Kohereza urufunguzo yimuwe binyuze idasanzwe Ubuntu utility

Iyo ubutumwa bigaragara

Iy'ukuri Host '203.0.113.1 (203.0.113.1)' ntashobora kuba wubatswe.

ECDSA Y'INGENZI igikumwe NI FD: FD: D4: F9: 77: Fe: 73: 84: E1: 55: 00: AD: D6: 6D: 22: Fe.

Uri neza wipfuza kubandanya ryafashije (YEGO / OYA)? Yego

Komeza Ukwihuza na Injiza Ijambobanga kwinjira Seriveri. Inyuma y'ivyo, public Urufunguzo izaba bwikora yimuwe ku mpera Idosiye authorized_keys Iboneza.

Ihitamo 3: Cya Gufungura urufunguzo Gukoporora

Mu adahari kubona mudasobwa kure Biturutse A ssh Seriveri, ibikorwa byose bivugwa haruguru intoki yicwa. Gukora iyi, mbere kumenya amakuru urufunguzo ku PC Seriveri Biturutse CAT ~ / .ssh / id_rsa.pub command.

Ubona amakuru y'ingenzi Biturutse Cat itegeko mu Ubuntu

Mugaragaza izaba yagaragaje hafi nk'uwo Ikurikiranyanyuguti: ssh-RSA + urufunguzo nk'uko A Gushyiraho Bya Inyuguti == kuyigerageza @ Test. Nyuma, kuja ku kazi ku gikoresho kure aho Kurema Ububiko nshya kuri MKDIR -P ~ / .ssh. Ni Vyongeye habaho Idosiye Authorized_keys. Next, inyongera urufunguzo hari wize mbere kuri Urubariro Echo + Urufunguzo rusange >> ~ / .ssh / authorized_keys. Nyuma, ushobora kugerageza gukora Kwemeza na Seriveri adakoresheje password.

Kwemeza ku Seriveri binyuze Urufunguzo yaremye

Mu gice kibanziriza iki, wize ku buryo batatu Gukoporora A & Bya kure mudasobwa urufunguzo Seriveri. Ibikorwa nk'ivyo Emera Kuri Kwihuza nta Ijambobanga. Iyi gahunda ni yakoze Biturutse command na kwinjira SHH ssh Gutumira @ Remote_Host, aho ukoresha @ remote_host ni Gutumira n'ingabo mudasobwa izina. Igihe watangura connect, uzaba amenyeshwa isano batamenyereye na ushobora gukomeza ku i YEGO Ihitamo.

Kwihuza Kuri A & Bya kure kuri ssh in Ubuntu

Ukwihuza bwikora bibaho iyo nteruro urufunguzo (Shyiraho) ntabwo bivugwa mu kuremwa w'inkweto imfunguzo. Ahandiho, uzaba kubanza kuzana ko gukomeza gukorana ssh.

Hagarika ijambo ryibanga

Iroranirwa kirageze Gukoporora urufunguzo afatwa mu mimerere iyo ushobora kwinjira Seriveri adakoresheje Ijambobanga. Icyakora, ubushobozi bwo guhamya bityo bituma igitero gukoresha ibikoresho kuko guhitamo password no gusatura isano protected. Mustoke ubwawe kuva bihe nk'ivyo bizatuma w'igihe Mukoresha password Iyinjiza mu Idosiye ssh Iboneza. Ibi bizakenera:

Mu Bihera, Gufungura i Iboneza Idosiye Biturutse i Muhinduzi ikoresha Koresha GEGDIT / etc / ssh / SSHD_CONFIG command.

Gukoresha i Idosiye ssh Iboneza kuri Editor muri Ubuntu

Shaka PasswordAuthentication Umurongo na gukuraho # ikimenyetso mu ntangiriro ngo rass Ikintu.
Guhindura agaciro NO no gukiza Iboneza ubu.

Kwangira password Kwemeza mu ssh kuri Ubuntu

Gufunga Muhinduzi na Ongera utangire i Ikwirakwiza SystemCTL utangire ssh Seriveri.

Ongera utangire i ssh Seriveri mu Ubuntu sisitemu y'imikorere

Mu kwemeza ijambobanga bazaba kuzimya, no kwinjira Seriveri gusa gukoreshwa hakoreshejwe imfunguzo bwihariye yaremye kuko na RSA algorithm.

Gushyiraho amahame firewall

Ubuntu, firewabull firewall ni firewall idasobanutse (UFW). Iragufasha gukemura amasano serivisi zatoranijwe. Buri porogaramu ikora umwirondoro wacyo muriki gikoresho, kandi ufw ibuka, kwemerera cyangwa guhangayikishwa. Gushiraho umwirondoro wa ssh wongeyeho kurutonde bikorwa nkibi:

Fungura urutonde rwumurongo unyuze muri Sudo Ufw Porogaramu.

Reba imyirondoro isanzwe ya firevola muri Ubuntu

Injira ijambo ryibanga kuri konti kugirango werekane amakuru.

Injira ijambo ryibanga kugirango urebe urutonde rwimyirondoro ya Firevola Ubuntu

Uzabona urupapuro ruhari, hagomba kuzura muri bo.

Noneho ugomba gukemura amasano ukoresheje ssh. Kugirango ukore ibi, ongera kurutonde rwimyirondoro yemewe ukoresheje sudo ufw yemerera gufungura.

Ongeraho Seriveri yo gukemura amasano kuri firewall Ubuntu

Fungura Firewall mugusubiramo amategeko, Sudo Ufw Gushoboza.

Ongera utangire firewall hamwe navugururwa ryamategeko muri Ubuntu

Kuko imyizerere ni ko isano bemerewe, Imimerere Ikwirakwiza UFW bigomba giteganywa, hanyuma muzabona Imimerere ya urusobe.

Reba urutonde rwa firewall ihuza muri Ubuntu

Kuri iyi, amabwiriza yacu ya SSH muri ubuntu arangiye. Ibindi bikoresho kuri dosiye iboneza nibindi bipimo bikozwe na buri mukoresha mubihe byayo. Ushobora kumenyana Igikorwa cya bice byose ssh in Inyandiko zemewe n'Itegeko Shingiro rya porotokore.