网路配置: vim /etc/sysconfig/network-scripts/ifcfg-eth0 远程登录linux操作系统: 软件:putty,Xshell,SecureCRT 通过秘钥进行SSH加密链接: 用PuttYgen生成秘钥,并保存好 # mkdir /root/.ssh/ # chmod 700 /root/.ssh/ <==更改目录权限 # vi/root/.ssh/authorized_keys <== 将秘钥粘贴进来,退出保存 # chmod 600/root/.ssh/authorized_keys <==更改文件权限 # setenforce 0 <== 临时关闭selinux 永久关闭selinux # vi /etc/selinux/config<==修改selinux配置 修改SELINUX=enforcing ==> SELINUX=disabled 注:selinux三个选项:enforcing,开启SELINUX安全防护 permissive,关闭SELINUX安全防护,但是警告 disabled,不加载SELINUX安全防护 在putty中SSH中Auth选项中添加私有秘钥文件位置 扩展内容:服务端与客户端ssh密钥对联机,无密码联机 1 )首先需要在客户端ssh-keygen生成密钥对,公钥与私钥 [root@localhost ~]# ssh-keygen Generating public/private rsa key pair. # 生成公共/私有密钥对 Enter file in which to save the key(/root/.ssh/id_rsa): # 输入保存密钥文件中/root/.ssh/id_rsa Enter passphrase (empty for no passphrase): # 输入密码(无密码为空) Enter same passphrase again: # 再次确认密码 Your identification has beensaved in /root/.ssh/id_rsa. # 你的身份验证保存于/root/.ssh/id_rsa Your public key has been saved in/root/.ssh/id_rsa.pub. # 你的公共密钥保存于/root/.ssh/id_rsa.pub The key fingerprint is: # 91:cc:42:a3:69:4b:ba:0e:7a:14:a9:dd:66:12:c5:5droot@localhost.localdomain The key's randomart image is: # 随机的图像密钥为: +--[ RSA 2048]----+ | . .o.E | | o+.+ . | | o= . = | | ++ . . . | | o.+. S | |. +.+ | |...+ | |.o. | |... | +-----------------+ [root@localhost ~]# 2 )将公钥上传到服务端中,公钥保存在 $HOME/.ssh/id_rsa.pub [root@localhost ~]# cat ~/tmp/id_rsa.pub >~/.ssh/authorized_keys 登录到服务器,修改权限 chmod 700 /root/.ssh/ chmod 600 /root/.ssh/authorized_keys 这样有客户端登录linux操作系统就不用输入密码,就可以登录了。 3 )执行下面的命令,就可以不需要密码就可以进行ssh无密码登录 扩展内容:两台服务器之间通过密匙登录,无需输入密码。(参考上述的扩展内容既可以完成)。
|