本文件说明如何在 Linux 上安装、使用 SSH2.


一、版权说明

本文件将遵循GPL发布

二、软件取得

1 RedHat 6.2



2 SSH2 Server

rpm : ssh-commercial-server-2.2.0-2nox.i386.rpm
source: ssh-2.2.0.tar.gz



3 SSH2 Client
rpm : ssh-commercial-workstation-2.2.0-2.i386.rpm



三、软件安装

说明：Remote Host Name :Remote (Server) 192.168.1.222
Local Host Name :Local (Client) 192.168.1.223

1 安装 Redhat6.2

2 安装 SSH2 Server(Remote Host)

使用 RPM
[root@Remote root]# rpm -ivh ssh-commercial-server-2.2.0-2nox.i386.rpm

使用 SOURCE

[root@Remote root]# tar xzvf ssh-2.2.0.tar.gz
# cd ssh-2.2.0
# ./configure
# make
# make install


3 安装 SSH2 Clinet(Local Host)

[root@Local root]# rpm -ivh ssh-commercial-workstation-2.2.0-2.i386.rpm


四、系统配置
1.在 Remote Host 启动sshd
[root@Remote root]/usr/loca/sbin/sshd2

2 在 Local Host 添加用户账号 如 bill
[root@Local root] useradd bill
[root@Local root] passwd bill

3 在Client 上建立用户的公共和私人密钥
以bill登陆到 Local Host 上
[bill@Local local]$ ssh-keygen
Generating 1024-bit dsa key pair
9 o.oOo..oOo.o
Key generated.
1024-bit dsa, created by bill@Local Wed Sep 23 07:11:02 1998
Passphrase :输入一些字符，不超过20个
Again :重复输入一遍
Private key saved to /home/bill/.ssh2/id_dsa_1024_a

4 在Client 上建立用户的认证文件
以bill登陆到 Local Host 上
[bill@Local local]$cd ~/.ssh2
[bill@Local local]$echo "IdKey id_dsa_1024_a" > identification

4. 在 Remote Host 添加用于远程登陆的用户账号 如 bill
[root@Remote root]# useradd bill
[root@Remote root]# passwd bill

5. 以bill登陆到 Remote Host 上
[bill@Remote local]$ ssh-keygen
Generating 1024-bit dsa key pair
9 o.oOo..oOo.o
Key generated.
1024-bit dsa, created by bill@Local Wed Sep 23 07:11:02 1998
Passphrase :输入一些字符，不超过20个
Again :重复输入一遍
Private key saved to /home/bill/.ssh2/id_dsa_1024_a

6. 以bill登陆到 Local Host
[bill@Local local]$ cd ~
[bill@Local local]$ cp ./.ssh2/id_dsa_1024_a.pub Local.pub

以bill ftp Remote Host
[bill@local bill]$ ftp local

ftp> lcd ~/.ssh2
ftp> cd ~/.ssh2
ftp> put Local.pub
ftp> bye

以bill Telnet Remote Host
[bill@local bill]$ telnet local
[bill@remote bill]$ cd ~/.ssh2
[bill@remote .ssh2]$echo "Key Local.pub" > authorization


五 测试
在Local Host

[bill@local bill]$ ssh Remote
Passphrase for key "/home/bill/.ssh2/id_dsa_1024_a" with comment "1024-bit
d: 输入前面输入的一些字符
Authentication successful.

[bill@Remote bill]$ netstat -n
Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 252 192.168.1.222:22 192.168.1.223:3532 ESTABLISHED
Active UNIX domain sockets (w/o servers)
Proto RefCnt Flags Type State I-Node Path
unix 9 [ ] DGRAM 436 /dev/log
unix 0 [ ] STREAM CONNECTED 177 @00000016
unix 0 [ ] DGRAM 771
unix 0 [ ] DGRAM 753
unix 0 [ ] DGRAM 672
unix 0 [ ] DGRAM 636
unix 0 [ ] DGRAM 590
unix 0 [ ] DGRAM 575
unix 0 [ ] DGRAM 523
unix 0 [ ] DGRAM 458
unix 0 [ ] DGRAM 446

[bill@local bill]$ sftp Remote
Passphrase for key "/home/bill/.ssh2/id_dsa_1024_a" with comment "1024-bit
d:
sftp> ls -l
drwxr-xr-x 5 bill bill 4096 Jul 12 6:29 Desktop/
-rwxr-xr-x 1 bill bill 333 Jul 12 6:29 .emacs*
-rw-r--r-- 1 bill bill 24 Jul 12 6:29 .bash_logout
-rw-r--r-- 1 bill bill 230 Jul 12 6:29 .bash_profile
-rw-r--r-- 1 bill bill 124 Jul 12 6:29 .bashrc
drwxr-xr-x 3 bill bill 4096 Jul 12 6:29 .kde/
-rw-r--r-- 1 bill bill 435 Jul 12 6:29 .kderc
-rw-r--r-- 1 bill bill 3394 Jul 12 6:29 .screenrc
-rw------- 1 bill bill 316 Jul 12 16:31 .bash_history
drwxr-xr-x 3 bill bill 4096 Jul 12 16:00 .ssh2/
sftp>

六 结束