免费注册 查看新帖 |

Chinaunix

  平台 论坛 博客 文库
最近访问板块 发新帖
查看: 2101 | 回复: 0

为ssh加个证书 [复制链接]

论坛徽章:
0
发表于 2009-11-14 16:15 |显示全部楼层

Using username "root".
Authenticating with public key "imported-openssh-key"
Passphrase for key "imported-openssh-key":
Last login: Mon Nov 9 09:54:25 2009 from 192.168.3.135
OpenBSD 4.6 (GENERIC) #58: Thu Jul 9 21:24:42 MDT 2009
Welcome to OpenBSD: The proactively secure Unix-like operating system.
Please use the sendbug(1) utility to report bugs in the system.
Before reporting a bug, please try to reproduce it with the latest
version of the code. With bug reports, please try to ensure that
enough information to reproduce the problem is enclosed, and if a
known fix for it exists, include that as well.
10:11AM up 42 mins, 3 users, load averages: 0.12, 0.09, 0.08
USER TTY FROM LOGIN@ IDLE WHAT
root C0 - 9:29AM 20 -bash
root p0 192.168.3.135 9:50AM 0 -bash
root p1 192.168.3.135 10:11AM 0 w
   November 2009
Su Mo Tu We Th Fr Sa
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30
[root@liuqi ~]#
用证书登陆
首先生成一个公钥和一个私钥
[root@liuqi ~]#ssh-keygen -b 1024 -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_dsa.
Your public key has been saved in /root/.ssh/id_dsa.pub.
The key fingerprint is:
ba:71:52:87:11:cd:74:8a:bc:91:ba:a3:51:af:95:77 root@liuqi.cutbag
The key
然后做一个ssh服务端的公钥证书
cat id_rsa.pub > authorized_keys
接着配置一下ssh服务配置文件/etc/ssh/sshd_config
把如下几句注释掉的内容打开
RSAAuthentication yes
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
然后将私钥id_rsa文件copy到windows里,把内容copy到一个新的文本文件里。
然后在windows下用puttygen生成新文件,就可以了


本文来自ChinaUnix博客,如果查看原文请点:http://blog.chinaunix.net/u3/101042/showart_2094638.html
您需要登录后才可以回帖 登录 | 注册

本版积分规则 发表回复

  

北京盛拓优讯信息技术有限公司. 版权所有 京ICP备16024965号-6 北京市公安局海淀分局网监中心备案编号:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年举报专区
中国互联网协会会员  联系我们:huangweiwei@itpub.net
感谢所有关心和支持过ChinaUnix的朋友们 转载本站内容请注明原作者名及出处

清除 Cookies - ChinaUnix - Archiver - WAP - TOP