This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
сервис_ssh [2023/11/30 08:44] val [Windows] |
сервис_ssh [2024/06/19 12:22] val [SCP] |
||
---|---|---|---|
Line 40: | Line 40: | ||
===== Настройка ssh сервера ===== | ===== Настройка ssh сервера ===== | ||
<code> | <code> | ||
- | gate# cat /etc/ssh/sshd_config | + | gate# cat /etc/ssh/sshd_config.d/my.conf |
</code><code> | </code><code> | ||
- | ... | ||
Port 2222 | Port 2222 | ||
- | ... | + | |
DenyUsers "user*" | DenyUsers "user*" | ||
- | ... | + | |
PermitRootLogin yes | PermitRootLogin yes | ||
- | ... | + | |
+ | #KexAlgorithms +diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha1 | ||
+ | #HostkeyAlgorithms +ssh-dss,ssh-rsa | ||
</code> | </code> | ||
Line 70: | Line 71: | ||
$ mkdir .ssh/ | $ mkdir .ssh/ | ||
- | $ cat .ssh/config | + | $ cat ~/.ssh/config |
</code><code> | </code><code> | ||
Host * | Host * | ||
Line 85: | Line 86: | ||
# StrictHostKeyChecking=no | # StrictHostKeyChecking=no | ||
# LogLevel ERROR | # LogLevel ERROR | ||
+ | |||
+ | ### HostKeyAlgorithms +ssh-rsa | ||
+ | ### PubkeyAcceptedKeyTypes +ssh-rsa | ||
</code> | </code> | ||
Line 108: | Line 112: | ||
==== SSH вместо RCP (SCP) ==== | ==== SSH вместо RCP (SCP) ==== | ||
+ | ==== SCP ==== | ||
<code> | <code> | ||
$ scp -P 2222 val@radio.specialist.ru:/usr/local/www/apache22/data/unix/virus.zip . | $ scp -P 2222 val@radio.specialist.ru:/usr/local/www/apache22/data/unix/virus.zip . | ||
server# scp switchN:running-config /srv/tftp/switchN-running-config | server# scp switchN:running-config /srv/tftp/switchN-running-config | ||
+ | deb12_ub24# scp -O switchN:running-config /srv/tftp/switchN-running-config | ||
server# sshpass -p cisco scp switchN:running-config /srv/tftp/switchN-running-config | server# sshpass -p cisco scp switchN:running-config /srv/tftp/switchN-running-config | ||
+ | |||
+ | server# scp -3 192.168.X.101:/etc/docker/daemon.json gate:/etc/docker/daemon.json | ||
</code> | </code> | ||
Line 121: | Line 129: | ||
<code> | <code> | ||
- | www# cat /etc/ssh/sshd_config | + | # cat /etc/ssh/sshd_config |
</code><code> | </code><code> | ||
... | ... | ||
Line 128: | Line 136: | ||
... | ... | ||
Match group user1 | Match group user1 | ||
+ | #Match group group1 | ||
ChrootDirectory %h | ChrootDirectory %h | ||
ForceCommand internal-sftp | ForceCommand internal-sftp | ||
</code><code> | </code><code> | ||
- | www# chown root ~user1/ | + | # chown root ~user1/ |
- | www# mkdir ~user1/public_html | + | # mkdir ~user1/public_html && chown user1:user1 ~user1/public_html/ |
- | www# chown -R user1:user1 ~user1/public_html/ | + | # mkdir ~user1/mail && chown user1:user1 ~user1/mail/ |
</code> | </code> | ||
Line 179: | Line 188: | ||
</code><code> | </code><code> | ||
# cat /proc/sys/net/ipv4/ip_local_port_range | # cat /proc/sys/net/ipv4/ip_local_port_range | ||
+ | или | ||
+ | # sysctl net.ipv4.ip_local_port_range | ||
+ | |||
+ | lan# ssh -N -R 61022:localhost:22 -o ServerAliveInterval=60 student@server.corpX.un | ||
+ | |||
+ | lan# ssh -N -R 61389:192.168.100+X.1NN:3389 student@server.corpX.un | ||
- | lan# ssh -N -R 61022:localhost:22 user1@server.corpX.un | + | mobaxterm> ssh -N -R 61389:localhost:3389 student@server.corpX.un |
- | lan# ssh -N -R 3101:192.168.100+X.101:3389 user1@server.corpX.un | + | mobaxterm> ssh -N -R 0:localhost:5500 student@server.corpX.un |
</code> | </code> | ||
Line 222: | Line 237: | ||
<code> | <code> | ||
- | node1:~# cat .ssh/config | + | node1:~# cat ~/.ssh/config |
</code><code> | </code><code> | ||
Host * | Host * |