[客户端station:172.25.254.48,
服务端redhat(被远程):172.25.254.148]
一、功能
让远程主机可以通过网络访问sshd服务,开始一个安全shell二、客户端连接方式
1.ssh 远程主机用户@远程主机ipThe authenticity of host '172.25.254.148 (172.25.254.148)' can't be established.
ECDSA key fingerprint is a5:b4:2c:dd:e6:9c:2f:b4:9e:26:0a:7e:8c:5f:75:e6.
Are you sure you want to continue connecting (yes/no)? yes ##连接陌生主机时需要建立认证关系
Warning: Permanently added '172.25.254.148' (ECDSA) to the list of known hosts.
[email protected]'s password: ##远程用户密码
Last login: Tue Nov 14 17:17:20 2017 from 172.25.254.48
[root@redhat ~]# ##登陆成功
2.ssh 远程主机用户@远程主机ip -X ##调用远程主机图形工具
3.ssh 远程主机用户@远程主机ip command ##直接在远程主机运行某条命令
[root@station Desktop]# ssh [email protected] touch /root/Desktop/file
[email protected]'s password:
##远程创建文件,成功了
服务端:
1.生成公钥私钥
[root@redhat ~]# ssh-keygen ##生成公钥私钥的工具
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):[enter] ##加密字符保存文件(建议用默认)
Enter passphrase (empty for no passphrase):[enter] ##密钥密码,必须>4个字符(建议不设,否则一会远程连接还需要输入这个密码)
Enter same passphrase again:[enter] ##确认密码
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
df:7d:d0:d4:63:76:45:da:57:cc:a5:ff:5f:ba:88:bc root@redhat
The key's randomart image is:
+--[ RSA 2048]----+
| +*|
| +*|
| o+*|
| o++|
| S . o|
| . . . ..|
| . . . +|
| . . . oo|
| E.. o..|
+-----------------+
[root@redhat ~]# ls /root/.ssh/
id_rsa id_rsa.pub
参数说明:
ssh-copy-id ##添加key认证方式的工具
-i ##指定加密key文件