Sumner Evans February 16, 2017 Mines Linux Users Group
Getting Started
What is SSH?
• SSH stands for Secure SHell. • SSH is a cryptographic network protocol for operating network services securely over an unsecured network. • SSH clients allow you to access any SSH server remotely and securely. • SSH uses public-key cryptography for authentication. • You can do other things with SSH as well.
What is SSH?
• SSH stands for Secure SHell. • SSH is a cryptographic network protocol for operating network services securely over an unsecured network. • SSH clients allow you to access any SSH server remotely and securely. • SSH uses public-key cryptography for authentication. • You can do other things with SSH as well.
What is SSH?
• SSH stands for Secure SHell. • SSH is a cryptographic network protocol for operating network services securely over an unsecured network. • SSH clients allow you to access any SSH server remotely and securely. • SSH uses public-key cryptography for authentication. • You can do other things with SSH as well.
What is SSH?
• SSH stands for Secure SHell. • SSH is a cryptographic network protocol for operating network services securely over an unsecured network. • SSH clients allow you to access any SSH server remotely and securely. • SSH uses public-key cryptography for authentication. • You can do other things with SSH as well.
What is SSH?
• SSH stands for Secure SHell. • SSH is a cryptographic network protocol for operating network services securely over an unsecured network. • SSH clients allow you to access any SSH server remotely and securely. • SSH uses public-key cryptography for authentication. • You can do other things with SSH as well.
How do I get an SSH client?
• Linux: openssh (or similar) package in your package manager (it’s probably already installed). • macOS: SSH is already installed, but it may be an old version. Use Homebrew if you want the latest version. • Windows: You can use PuTTY (http://www.putty.org/). • Your web browser: there’s an SSH plugin for all the modern browsers. • Your phone: there’s an app for that.
How do I install an SSH server?
• Arch Linux: openssh package. • Other Linux: you may need to install openssh-server or similar. • macOS: You can enable Remote Login1 in System Settings. • Windows: Read this ServerFault article and good luck. http://serverfault.com/questions/8411/ what-is-a-good-ssh-server-to-use-on-windows
Using an SSH client
The basics
• ssh [user@]server[:port] user is defaulted to your local username port is defaulted to 22 • Enable X-Forwarding: use -X flag • Exiting an SSH session: Ctrl + D or type logout or exit if your remote session is still running • If you want to just run one command on the remote server: ssh [flags] user@server[:port] command
The basics
• ssh [user@]server[:port] user is defaulted to your local username port is defaulted to 22 • Enable X-Forwarding: use -X flag • Exiting an SSH session: Ctrl + D or type logout or exit if your remote session is still running • If you want to just run one command on the remote server: ssh [flags] user@server[:port] command
The basics
• ssh [user@]server[:port] user is defaulted to your local username port is defaulted to 22 • Enable X-Forwarding: use -X flag • Exiting an SSH session: Ctrl + D or type logout or exit if your remote session is still running • If you want to just run one command on the remote server: ssh [flags] user@server[:port] command
The basics
• ssh [user@]server[:port] user is defaulted to your local username port is defaulted to 22 • Enable X-Forwarding: use -X flag • Exiting an SSH session: Ctrl + D or type logout or exit if your remote session is still running • If you want to just run one command on the remote server: ssh [flags] user@server[:port] command
I hate entering my password all the time
When logging into a server, you can authenticate using your password, or you can set up an SSH key to authenticate you without entering your password. How to configure this? 1. ssh-keygen and follow the steps - definitely set a password 2. ssh-copy-id server and enter your password on the server 3. ssh server should now authenticate you without having to use a password
But now I have to enter my SSH Key password all the time
If you don’t like entering your SSH key password all the time, you can use ssh-agent and shh-add. I have the following in my ~/.zshrc to set this up automatically. if [ ! -S ~/.ssh/ssh_auth_sock ]; then eval `ssh-agent` ln -sf "$SSH_AUTH_SOCK" ~/.ssh/ssh_auth_sock fi export SSH_AUTH_SOCK=~/.ssh/ssh_auth_sock ssh-add -l | grep "The agent has no identities" && ssh-add
Configuring your SSH client
One thing that is annoying is when you have to type out your full username and full hostname when connecting to a server. You can add aliases to ~/.ssh/config so you don’t have to do this. Host isengard HostName isengard.mines.edu User jonathanevans Port 42 ...
Setting up an SSH Server
Enabling SSH to your computer
On Arch, just start an enable sshd via systemctl. You can configure your SSH daemon via the /etc/ssh/sshd config file (note the d). Here are some of the things you can configure: • AllowUsers - allows you to set which users can log in • PermitRootLogin - if yes, you can SSH into the computer as root • AllowGroups - allows you to set which groups can log in • PasswordAuthentication - set to no if you want to force authentication using SSH key
References
• Wikipedia: https://en.wikipedia.org/wiki/Secure_Shell • The Arch Wiki: https://wiki.archlinux.org/index.php/Secure_Shell • The SSH manpage • This Medium Post: https://medium.com/@shazow/ ssh-how-does-it-even-9e43586e4ffc#.uwmcu64az • http://tychoish.com/post/9-awesome-ssh-tricks/ • https://lani78.com/2008/08/08/ generate-a-ssh-key-and-disable-password-authentication-on-u
Thanks to Kieth Hellman for inspiring this talk
Questions?
Copyright Notice
This presentation was from the Mines Linux Users Group. A mostly-complete archive of our presentations can be found online at https://lug.mines.edu. Individual authors may have certain copyright or licensing restrictions on their presentations. Please be certain to contact the original author to obtain permission to reuse or distribute these slides.
Feb 16, 2017 - SSH is a cryptographic network protocol for operating network services securely over an unsecured network. ⢠SSH clients allow you ... Page 5 ...
https://www.git-tower.com/blog/8-reasons-for-switching-to-git. Sumner Evans. Git ... remote, a version of the repository hosted externally from your local machine. ... Play around with a bunch of them and see which one you like best. Here are a few t
Feb 16, 2017 - Regulations Part A, it is hereby notified that the list of securities further admitted to dealings on the National Stock ... Kotak Mahindra Asset Management Company Limited. Name of ... Email: [email protected].
May 3, 2017 - Any other business. 33. 8.1. - . ...... Viadoc Business Solutions Limited; Treatment of ovarian cancer. COMP coordinator: Brigitte Bloechl-Daum.
Feb 16, 2017 - Sub : Suspension of trading in units - on account of redemption - Birla Sun Life ... Manager. Telephone No. Fax No. Email id. 022-26598235/36.
Feb 14, 2017 - Send a question via our website www.ema.europa.eu/contact ...... domain B of fibronectin in single-chain variable fragment format, EMA/OD/166/16 ..... the Community Register of Orphan Medicinal Products if it is established ...
Book Fair. 24. 25. Star of the Week. Odin ame Word Family. 26. Art. Media/Tech. Happy Birthday. William. 27 Music/P.E.. Happy Birthday. Odin. RV Spirit Wear/. Wear Blue Day. 28 P.E./Music. I love to read month! READ, READ, READ. Look at those Read-A-
men physically able for war, and they were ... for yourself and up to five other people each day, provided that the land offers berries, small game, water, and so ...
Cadets practised on one each other how to immoblise one arm in a high arm sling. Cadet placed pads carefully without disrupting the flow of CPR. Cadets successfully immobilised the shoulder, elbow and hand using two triangular bandages. At the end of
BK 9. BK 17. BK 18. QN 5. Brooklyn Community District 16. Neighborhoods1: Broadway Junction, Brownsville, Ocean Hill. Top 3 pressing issues identified by.
healing and restoration. I congratulate all of you here today for the witness. that you give to sharing, to being alongside individual men and women who. are less fortunate in many ways. I thank the carers for the love you show. daily and indeed hour
Supreme Court and the Constitution. There has been great collaboration between General Ed teachers and Special. Services. Meeting adjourned at 3:46 p.m.. * David Roe did not vote as he joined the meeting after this vote was taken. Page 2 of 2. Februa
There was a problem previewing this document. Retrying... Download. Connect more apps... Try one of the apps below to open or edit this item. February 2017.
exhibit in Moscow. This show: "VISUALIZING SCIENCE" opens February 22nd with an opening. reception for the artists and judging on Feb. 24th. This is a juried ...
Students in Mrs. McGraw's classroom for hosting a successful oatmeal bar for staff on January 26th. Jeremiah Van Tassell and Wyatt Johnson who successfully ...
There was a problem previewing this document. Retrying... Download. Connect more apps... Try one of the apps below to open or edit this item. February 2017 ...
Carter Hewitt. Marcus Carter. Jaquan Sampson. Isiah Allen. Page 3 of 11. February 2017 Newsletter.pdf. February 2017 Newsletter.pdf. Open. Extract. Open with.
Joan Bergh,Bob & Patty Kern,Chuck Ebersol & PinkieSweet-Holland,Glen & Katie Connell,and Elaine& Dick. Lemieux.The vesselswill be fortified with ... winter. During my time away,Steve Johnson,our Assistant House Committee. Chair,will be covering durin