openssh-service 提供服务
openssh-clients 客户端
sshd服务的端口号----22
安装
[root@biudefor ~]# yum install -y openssh*
1.服务器端启动服务:
systemctl start sshd
2.关闭防火墙和selinux
登录方式
远程登录:
[root@biudefor ~]# ssh root@192.168.246.114
参数解释:
root 用户默认不写为root,也可以使用其他用户
-p:prot端口,指定端口,如果端口修改了需要指定
无密码登陆(ssh密钥认证)
[root@biudefor ~]# ssh-keygen #一直回车
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:jZzWLVFDnhxmiuF7LTuSXiMNMkqPgDMZVLN68M1AI98 root@biudefor
The key's randomart image is:
+---[RSA 2048]----+
| o.= . .B |
|. + = . o B + |
|.. + E o o + |
| ++ + . * + |
|=..o.oo S * o |
| o.o + + = + |
| o . + * |
| . + o |
| . |
+----[SHA256]-----+
[root@biudefor ~]# ls .ssh
id_rsa id_rsa.pub known_hosts
id_rsa ---私钥
id_rsa.pub ---公钥
known_hosts ----确认过公钥指纹的可信服务器列表的文件
authorized_keys ---授权文件,是传输过公钥到对方服务后会自动重命名生成的
3.拷贝公钥给对方:
#ssh-copy-id ip地址
ip地址:指的是对方服务器
4.远程连接的时候就不用输入密码了
修改端口号
修改配置文件:
# vim /etc/ssh/sshd_config
#Port 22 #将注释去掉,修改端口号可以修改为自定义的。
[root@biudefor ~]# systemctl restart sshd
网友评论