|
這個文章nice���,https://www.cnblogs.com/ftl1012/p/ssh.html
ssh�����,secure shell縮寫���,加密傳輸,比telnet明文傳輸更安全�,旨在替代ftp和telnet連接linux服務(wù)器
默認(rèn)端口22,服務(wù)器端包含ssh服務(wù)和sftp服務(wù)���,客戶端包含ssh連接命令和scp拷貝命令
scp每次都是全量拷貝�����,效率低���,適合第一次拷貝��,增量拷貝用rsync�����,可以雙向拷貝
安裝openssh�,需要四個包: openssh-clients:客戶端 openssh-server:服務(wù)端 openssh-askpass:密碼診斷工具(可以不要) openssh:核心文件 openssl:提供加密的程序
配置文件/etc/ssh/sshd_config
配置互信免密登陸參考https://www.cnblogs.com/yongestcat/p/13220187.html
和別的服務(wù)一樣可以stop start reload restart
查看ssh端口
[hadoop@master ~]$ netstat -lntup | grep ssh
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
[hadoop@master ~]$ sudo netstat -lntup | grep ssh
[sudo] password for hadoop:
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1247/sshd
tcp6 0 0 :::22 :::* LISTEN 1247/sshd
[hadoop@master ~]$ sudo ss |grep ssh
tcp ESTAB 0 0 192.168.168.11:ssh 192.168.168.1:53026
[hadoop@master ~]$ sudo netstat -a | grep ssh
tcp 0 0 0.0.0.0:ssh 0.0.0.0:* LISTEN
tcp 0 0 master:ssh 192.168.168.1:53273 ESTABLISHED
tcp 0 0 master:ssh 192.168.168.1:53026 ESTABLISHED
tcp6 0 0 [::]:ssh [::]:* LISTEN
[hadoop@master ~]$ sudo netstat -lnt | grep 22
tcp 0 0 192.168.122.1:53 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp6 0 0 :::22 :::* LISTEN
[hadoop@master ~]$ sudo netstat -lnt | grep ssh | wc -l
0
[hadoop@master ~]$
遠(yuǎn)程登陸
ssh 192.168.168.12
ssh root@192.168.168.12
ssh -X root@192.168.168.12
ssh 192.168.168.12 "ifconfig"
ssh omd@192.168.168.12 -t "sh /home/hadoop/test.sh"
ssh隧道 這篇博文非常nice http://www./archives/2450
ssh -f -N -L 10.1.0.1:9906:10.1.0.2:3306 root@10.1.0.2
|
