怎么设默认浏览器-win7无法关机
![ssh学习](/uploads/image/0315.jpg)
2023年4月3日发(作者:硬盘读写速度)
详解ssh免密码登录配置⽅法(图⽰加命令)
⾸先,说明⼀下我们要做的是,serverA服务器的usera⽤户免密码登录serverB服务器的userb⽤户。
我们先使⽤usera登录serverA服务器
[root@serverA~]#su-usera
[usera@serverA~]$pwd
/home/usera
然后在serverA上⽣成密钥对
[usera@serverA~]$ssh-keygen-trsa
Generatingpublic/privatersakeypair.
Enterfileinwhichtosavethekey(/home/usera/.ssh/id_rsa):
Createddirectory'/home/usera/.ssh'.
Enterpassphrase(emptyfornopassphrase):
Entersamepassphraseagain:
Youridentificationhasbeensavedin/home/usera/.ssh/id_rsa.
Yourpublickeyhasbeensavedin/home/usera/.ssh/id_.
Thekeyfingerprintis:
39:f2:fc:70:ef:e9:bd:05:40:6e:64:b0:99:56:6e:01usera@serverA
Thekey'srandomartimageis:
+--[RSA2048]----+
|Eo*|
|@.|
|=*|
|oo.|
|.S.|
|+..|
|+..|
|+.o.|
|.o=o.|
+-----------------+
此时会在/home/usera/.ssh⽬录下⽣成密钥对
[usera@serverA~]$
总⽤量16
drwx------2userausera40968⽉2409:22.
drwxrwx---12userausera40968⽉2409:22..
-rw-------1userausera16758⽉2409:22id_rsa
-rw-r--r--1userausera3998⽉2409:22id_
然后将公钥上传到serverB服务器的,并以userb⽤户登录
[usera@portalweb1~]$ssh-copy-iduserb@10.124.84.20
Theauthenticityofhost'10.124.84.20(10.124.84.20)'can'tbeestablished.
RSAkeyfingerprintisf0:1c:05:40:d3:71:31:61:b6:ad:7c:c2:f0:85:3c:cf.
Areyousureyouwanttocontinueconnecting(yes/no)?yes
Warning:Permanentlyadded'10.124.84.20'(RSA)tothelistofknownhosts.
userb@10.124.84.29'spassword:
Nowtryloggingintothemachine,with"ssh'userb@10.124.84.20'",andcheckin:
.ssh/authorized_keys
tomakesurewehaven'taddedextrakeysthatyouweren'texpecting.
这个时候usera的公钥⽂件内容会追加写⼊到userb的.ssh/authorized_keys⽂件中
[usera@serverA~]$/id_
ssh-rsaAAAAB3NzaC1yc2EAAAABIwAAAQEA2dpxfvifkpswsbusPCUWReD/mfTWpDEErHLWAxnixGiXLvHuS9QNavepZoCvpbZWHade88KLPkr5XEv6M5RscHXxmxJ1IE5vBLrrS0NDJf8AjCLQpTDguyerpLybONRFFTqGXAc/ximMbyHeCtI0vnuJlvET0pprj7bqm
查看serverB服务器userb⽤户下的~/.ssh/authorized_keys⽂件,内容是⼀样的,此处我就不粘贴图⽚了。
[userb@serverB~]$/authorized_keys
ssh-rsaAAAAB3NzaC1yc2EAAAABIwAAAQEA2dpxfvifkpswsbusPCUWReD/mfTWpDEErHLWAxnixGiXLvHuS9QNavepZoCvpbZWHade88KLPkr5XEv6M5RscHXxmxJ1IE5vBLrrS0NDJf8AjCLQpTDguyerpLybONRFFTqGXAc/ximMbyHeCtI0vnuJlvET0pprj7bqm
另外我们要注意,.ssh⽬录的权限为700,其下⽂件authorized_keys和私钥的权限为600。否则会因为权限问题导致⽆法免密码登录。我们可以看到登陆后会有known_hosts⽂件⽣成。
[useb@serverB~]$
total24
drwx------.2usebuseb4096Jul2716:13.
drwx------.35usebuseb4096Aug2409:18..
-rw-------1usebuseb796Aug2409:24authorized_keys
-rw-------1usebuseb1675Jul2716:09id_rsa
-rw-r--r--1usebuseb397Jul2716:09id_
-rw-r--r--1usebuseb1183Aug1113:57known_hosts
这样做完之后我们就可以免密码登录了
[usera@serverA~]$sshuserb@10.124.84.20
另外,将公钥拷贝到服务器的~/.ssh/authorized_keys⽂件中⽅法有如下⼏种:
1、将公钥通过scp拷贝到服务器上,然后追加到~/.ssh/authorized_keys⽂件中,这种⽅式⽐较⿇烦。scp-P22~/.ssh/id_r@host:~/。
2、通过ssh-copy-id程序,就是我演⽰的⽅法,ssh-copyiduser@host即可
3、可以通过cat~/.ssh/id_|ssh-p22user@host‘cat>>~/.ssh/authorized_keys',这个也是⽐较常⽤的⽅法,因为可以更改端⼝号。
以上就是本⽂的全部内容,希望对⼤家的学习有所帮助,也希望⼤家多多⽀持。
更多推荐
ssh学习
发布评论