10 SSH bara uru (Secure Shell) Ajụjụ na Azịza ajụjụ ajụjụ ọnụ


SSH na-anọchi anya Shell Secure bụ usoro netwọkụ, nke a na-eji nweta igwe dịpụrụ adịpụ iji mezuo ọrụ netwọk iwu na iwu ndị ọzọ n'elu netwọk. A maara SSH maka nchekwa ya dị elu, omume nzuzo yana ndị nchịkwa netwọk na-ejikarị ejikwa sava weebụ dịpụrụ adịpụ.

N'ebe a na isiokwu usoro ajụjụ ajụjụ ọnụ, anyị na-eweta ụfọdụ ajụjụ SSH (Secure Shell) bara uru na azịza ha.

Anyị nwere ike ịlele nọmba ọdụ ụgbọ mmiri nke SSH site n'ịgba ọsọ n'okpuru otu ederede liner, ozugbo na ọnụ.

# grep Port /etc/ssh/sshd_config		[On Red Hat based systems]

# grep Port /etc/ssh/ssh_config		        [On Debian based systems]

Iji gbanwee ọdụ ụgbọ mmiri nke SSH, anyị kwesịrị ịgbanwe faịlụ nhazi nke SSH nke dị na '/etc/ssh/sshd_config' ma ọ bụ'/etc/ssh/ssh_config'.

# nano /etc/ssh/sshd_config	[On Red Hat based systems]

# nano /etc/ssh/ssh_config		[On Debian based systems]

Chọọ maka ahịrị ahụ.

Port 22

Ma dochie '22' na nọmba ọdụ ụgbọ mmiri ọ bụla UN na-etinye aka kwuo '1080'. Chekwaa faịlụ ahụ wee malitegharịa ọrụ SSH iji mee mgbanwe ndị ahụ ka ọ dị irè.

# service sshd restart					[On Red Hat based systems]

# service ssh restart					[On Debian based systems]

Iji gbanyụọ nbanye SSH mgbọrọgwụ, mepee faịlụ nhazi dị na '/etc/ssh/sshd_config' ma ọ bụ '/etc/ssh/ssh_config'.

# nano /etc/ssh/sshd_config			[On Red Hat based systems]

# nano Port /etc/ssh/ssh_config			[On Debian based systems]

Gbanwee oke 'PermitRootLogin' ka ọ bụrụ 'ee' wee malitegharịa ọrụ SSH dị ka egosiri n'elu.

Mepụta ssh-keygen site na iji iwu dị n'okpuru.

$ ssh-keygen

Jiri iwu dị n'okpuru detuo igodo ọha na onye nnabata anya.

$ ssh-copy-id -i /home/USER/.ssh/id_rsa.pub REMOTE-SERVER

Mara: Dochie USER na aha njirimara yana REMOTE-SERVER site na adreesị sava dịpụrụ adịpụ.

Oge ọzọ anyị na-agbalị ịbanye na sava SSH, ọ ga-ekwe ka nbanye na-ajụghị paswọọdụ, na-eji keygen. Maka nkọwa nkọwa zuru ezu, gụọ otu esi abanye sava SSH dịpụrụ adịpụ na-enweghị paswọọdụ.

N'ebe a ọzọ, anyị kwesịrị idezi faịlụ nhazi nke ọrụ SSH. Mepee faịlụ nhazi ma gbakwunye ndị ọrụ na otu dị na ala dị ka egosiri n'okpuru wee malitegharịa ọrụ ahụ.

AllowUsers Tecmint Tecmint1 Tecmint2
AllowGroups group_1 group_2 group_3
# nano /etc/issue

Tinyekwa ozi omenala gị na faịlụ a. Hụ, n'okpuru njide ihuenyo na-egosi ozi omenala ozugbo onye ọrụ banyere na nkesa.

Ọzọ, anyị kwesịrị imepe faịlụ nhazi SSH wee tinye/dezie ahịrị dị ka egosiri n'okpuru.

# protocol 2,1

to

Protocol 2

Chekwaa faịlụ nhazi wee malitegharịa ọrụ ahụ.

# cat /var/log/secure | grep “Failed password for”

Mara: Enwere ike ịmegharị iwu grep n'ụzọ ọ bụla ọzọ iji mepụta otu nsonaazụ ahụ.

A na-egosipụta iwu SCP na-adịghị mma na-arụ ọrụ n'okpuru:

$ scp text_file_to_be_copied [email _Host_server:/Path/To/Remote/Directory

Maka ihe atụ bara uru gbasara otu esi edetu faịlụ/nchekwa site na iji iwu scp, gụọ Iwu 10 SCP ka Detuo faịlụ/Nkwadebe na Linux.

# ssh [email  < local_file.txt

SSH bụ isiokwu na-ekpo ọkụ nke ukwuu site na ajụjụ ọnụ, oge niile. Ajụjụ ndị a dị n'elu gaara atụkwasịwo gị n'ezie.

Nke ahụ bụ ihe niile ugbu a. Aga m anọ ebe a na akụkọ ọzọ na-atọ ụtọ. Ruo mgbe ahụ Nọrọ na-ege ntị wee jikọọ na Tecment. Echefula ịnye anyị nzaghachi gị bara uru na ngalaba nkọwa anyị.