這個文章nice,https://www.cnblogs.com/ftl1012/p/ssh.html
ssh,secure shell縮寫,加密傳輸,比telnet明文傳輸更安全,旨在替代ftp和telnet連接linux服務器
默認埠22,服務器端包含ssh服務和sftp服務,客戶端包含ssh連接命令和scp拷貝命令
scp每次都是全量拷貝,效率低,適合第一次拷貝,增量拷貝用rsync,可以雙向拷貝
安裝openssh,需要四個包:
openssh-clients:客戶端
openssh-server:服務端
openssh-askpass:密碼診斷工具(可以不要)
openssh:核心檔案
openssl:提供加密的程式
組態檔/etc/ssh/sshd_config
配置互信免密登陸參考https://www.cnblogs.com/yongestcat/p/13220187.html
和別的服務一樣可以stop start reload restart
查看ssh埠
[hadoop@master ~]$ netstat -lntup | grep ssh (Not all processes could be identified, non-owned process info will not be shown, you would have to be root to see it all.) [hadoop@master ~]$ sudo netstat -lntup | grep ssh [sudo] password for hadoop: tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1247/sshd tcp6 0 0 :::22 :::* LISTEN 1247/sshd [hadoop@master ~]$ sudo ss |grep ssh tcp ESTAB 0 0 192.168.168.11:ssh 192.168.168.1:53026 [hadoop@master ~]$ sudo netstat -a | grep ssh tcp 0 0 0.0.0.0:ssh 0.0.0.0:* LISTEN tcp 0 0 master:ssh 192.168.168.1:53273 ESTABLISHED tcp 0 0 master:ssh 192.168.168.1:53026 ESTABLISHED tcp6 0 0 [::]:ssh [::]:* LISTEN [hadoop@master ~]$ sudo netstat -lnt | grep 22 tcp 0 0 192.168.122.1:53 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN tcp6 0 0 :::22 :::* LISTEN [hadoop@master ~]$ sudo netstat -lnt | grep ssh | wc -l 0 [hadoop@master ~]$
遠程登陸
ssh 192.168.168.12 ssh [email protected] ssh -X [email protected] ssh 192.168.168.12 "ifconfig" ssh [email protected] -t "sh /home/hadoop/test.sh"
ssh隧道 這篇博文非常nice http://www.zsythink.net/archives/2450
ssh -f -N -L 10.1.0.1:9906:10.1.0.2:3306 [email protected]
轉載請註明出處,本文鏈接:https://www.uj5u.com/caozuo/36189.html
標籤:Linux
下一篇:linux系統管理小工具