Secure Shell 2nd Edition --§1, SSH 介绍

§1, SSH  介绍

SSH, 即: Secure Shell, 是一个软件网络安全工具,它自动加密,解密数据,对用户是透明的.它不是shell, 仅仅是一个加密的隧道.

       SSH 是一个协议,包含了认证,加密和数据在网络上传输的完整.

SSH的功能如下:

1, Secure Remote Logins

[root@Meil89 bin]# ssh -l bbca 10.50.44.88

The authenticity of host '10.50.44.88 (10.50.44.88)' can't be established.

RSA key fingerprint is 52:69:ba:7c:0b:b6:0e:bc:ca:ea:52:51:ec:74:97:cc.

Are you sure you want to continue connecting (yes/no)? yes

Warning: Permanently added '10.50.44.88' (RSA) to the list of known hosts.

[email protected]'s password:

[root@Meil89 bin]# ssh  [email protected]

[email protected]'s password:

2, Secure File Transfer

scp myfile [email protected]

3, Secure Remote Command Execution

ssh $machine /usr/bin/w 

4, Keys and Agents

大致步骤如下,这部分还有待实践.

l         In advance (and only once), place special, nonsecure files called public key files into your remote computer accounts. These enable your SSH clients (ssh, scp) to access your remote accounts.

l         On your local machine, invoke the ssh-agent program, which runs in the background.

l         Choose the key (or keys) you will need during your login session.

l         Load the keys into the agent with the ssh-add program. This requires knowledge of each key's secret passphrase.

5, Access Control

6, Port Forwarding

$ ssh -L 3002:localhost:119 news.yoyodyne.com

详情参见9.1节