Linux配置ssh

Posted 2023-05-18

参考技术A 1、购买服务器
2、加入安全组
3、修改实例名称，修改实例密码

1 查看ssh配置

2 安装SSH

3 启动服务

4 查看ssh服务的状态
输入以下命令：

5 在电脑终端输入

1.添加文件

2.添加公钥到文件内（id_rsa.pub）

3.编辑ssh配置文件：

4.重启sshd服务

5 在电脑终端输入

常见错误：
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:sbd8mG3CPJc81mLgPPwLwVy7LF8qvUUuXisbcPKzTyE.
Please contact your system administrator.
Add correct host key in /Users/admin/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /Users/admin/.ssh/known_hosts:12
ECDSA host key for 47.96.118.128 has changed and you have requested strict checking.
Host key verification failed.

解决办法如下 输入

然后重新连接即可。

Linux 配置SSH免密登录

参考技术A 【比如：Jenkins构建时都是以jenkins用户进行操作，所以要以jeknins用户来配置免密钥登录。】
su - root

ssh-keygen -t rsa

A
[sjfuser@jenkins ~]$ ll /root/.ssh/
-rw-------. 1 sjfuser sjfuser 1671 4月 19 05:10 id_rsa
-rw-r--r--. 1 sjfuser sjfuser 398 4月 19 05:10 id_rsa.pub
-rw-r--r--. 1 sjfuser sjfuser 417 4月 19 05:08 known_hosts
B
-rw------- 1 root root 1217 Apr 21 10:46 /root/.ssh/authorized_keys

将此公钥写入任何一台远程主机的/root/.ssh/authorized_keys后，便可通过密钥登陆到远程主机。
任何一台主机，拿到该密钥id_rsa后，便可登陆写入了该公钥id_rsa.pub的主机。

如果添加指纹的时候提示添加失败，是因为你以前添加过了这个ip的指纹。
解决办法：将.ssh目录的known_hosts文件删除掉。也可以打开这个文件把对应ip的那条记录删除。

https://blog.csdn.net/qq_30059235/article/details/103890477

https://blog.csdn.net/fireofjava/article/details/40624215