rpm -qa | grep ssh
yum install -y openssl open-server
cd /etc/ssh
vim sshd_config
PermitRootLogin/RSAAuthentication/PubkeyAuthentication -> yes
StrictModes -> no
AuthorizedKeysFile .ssh/authorized_keys
cd ~
mkdir .ssh && cd .ssh
ssh-keygen -t rsa (生成 id_rsa, id_rsa.pub, known_hosts)
ssh-copy-id <user-name>@<centos-ip> (拷贝到另一台机器)
在另一台机器:
cd ~ && chmod 700 .ssh
cd ~/.ssh
touch authorized_keys
vim authorized_keys
chmod 644 authorized_keys
ssh -v <user-name>@<centos-ip>
systemctl start sshd
systemctl enable sshd
ps -e | grep sshd
netstat -an | grep 22
cd ~ && ls -a
ssh <user-name>@<centos-ip>
cd /etc/ssh
vim sshd_config 添加 Port <port-num>
firewall-cmd --zone=public --add-port=<port-num>/tcp --permanent
firewall-cmd --reload
firewall-cmd --zone=public --query-port=<port-num>/tcp
yum install semanage
yum provides semanage
semanage port -l | grep ssh
semanage port -a -t ssh_port_t -p tcp <port-num>
semanage port -l | grep ssh
systemctl restart sshd
==========================
adduser <user-name>
passwd <user-name>
whereis suders
ls -l /etc/suders
chmod -v u+w /etc/suders
vim /etc/suders:
<user-name> ALL=(ALL) ALL(or NOPASSWD:ALL不输密码)
chmod -v u-w /etc/suders