CentOS 默认已安装SSH ,配置文件 在/etc/ssh/ 目录 下 有ssh_config 和sshd_config
ssd_config 是客户端配置文件 sshd_config 是服务端配置文件
一:SSH默认是只有ROOT用户可以登录,怎么样 开启普通用户:xiang 可以用SSH登录了? 同时禁用ROOT登录?
vi编辑 sshd_config 文件
[root@localhost ~]# vi /etc/ssh/sshd_config
PermitRootLogin no #禁用root用户登录二:构建密钥对验证SSH登录系统
1:客户机配置(192.168.1.111)
[root@localhost ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.Enter file in which to save the key (/root/.ssh/id_rsa): # 直接回车Created directory ‘/root/.ssh’.Enter passphrase (empty for no passphrase): # 密码短信 用于保护私钥文件Enter same passphrase again:Passphrases do not match. Try again.Your identification has been saved in /root/.ssh/id_rsa.Your public key has been saved in /root/.ssh/id_rsa.pub.The key fingerprint is:6d:eb:29:87:e2:f9:be:84:9d:a2:c0:51:e9:66:4c:ea root@localhost.localdomain #会生成两个文件[root@localhost ~]# ll -h ~/.ssh/总计 8.0K-rw——- 1 root root 1.8K 11-21 23:24 id_rsa-rw-r–r– 1 root root 408 11-21 23:24 id_rsa.pubid_rsa 是私钥 id_rsa.pub 是公钥
上传公钥到给服务器
2:服务器配置(192.168.1.114)
[root@localhost ~]# scp root@192.168.1.111:/root/.ssh/id_rsa.pub ./
root@192.168.1.111′s password:id_rsa.pub 100% 408 0.4KB/s 00:00[root@localhost ~]#[root@localhost ~]# cp id_rsa.pub ~xiang005/.ssh/[root@localhost .ssh]# ll总用量 4-rw-r–r– 1 root root 408 11月 22 00:08 id_rsa.pub[root@localhost .ssh]# cat id_rsa.pub > authorized_keys[root@localhost .ssh]# vi /etc/ssh/sshd_configPubkeyAuthentication yesAuthorizedKeysFile .ssh/authorized_keysPasswordAuthentication no[root@localhost .ssh]# service sshd restart停止 sshd:[确定]正在启动 sshd:[确定]3:在客户机上验证
[root@localhost .ssh]# ssh xiang005@192.168.1.114
Enter passphrase for key ‘/root/.ssh/id_rsa’:
Last login: Wed Nov 21 23:14:53 2012 from 192.168.1.115
[xiang005@localhost ~]$
成功~~!