{"id":174,"date":"2013-06-07T20:49:28","date_gmt":"2013-06-07T12:49:28","guid":{"rendered":"http:\/\/coderbee.net\/?p=174"},"modified":"2013-06-07T15:51:01","modified_gmt":"2013-06-07T07:51:01","slug":"ssh-%e5%91%bd%e4%bb%a4%e8%af%b4%e6%98%8e%e4%b8%8e%e4%bd%bf%e7%94%a8","status":"publish","type":"post","link":"https:\/\/coderbee.net\/index.php\/linux\/20130607\/174","title":{"rendered":"ssh \u547d\u4ee4\u8bf4\u660e\u4e0e\u4f7f\u7528"},"content":{"rendered":"

ssh<\/h2>\n

\u7b80\u4ecb<\/h3>\n

SSH\uff08secure shell\uff09\u662f\u4e00\u79cd\u7f51\u7edc\u534f\u8bae\uff0c\u7528\u4e8e\u8ba1\u7b97\u673a\u4e4b\u95f4\u7684\u52a0\u5bc6\u767b\u5f55\u3002SSH\u6709\u591a\u79cd\u5b9e\u73b0\uff0cLinux\u7cfb\u7edf\u4e0b\u4f7f\u7528\u7684\u4e00\u822c\u662fOpenSSH\u3002<\/p>\n

\u6765\u81ea\u7ef4\u57fa\u767e\u79d1\uff1a<\/p>\n

\n\u4f20\u7edf\u7684\u7f51\u7edc\u670d\u52a1\u7a0b\u5e8f\uff0c\u5982rsh\u3001FTP\u3001POP\u548cTelnet\u5176\u672c\u8d28\u4e0a\u90fd\u662f\u4e0d\u5b89\u5168\u7684\uff1b\u56e0\u4e3a\u5b83\u4eec\u5728\u7f51\u7edc\u4e0a\u7528\u660e\u6587\u4f20\u9001\u6570\u636e\u3001\u7528\u6237\u5e10\u53f7\u548c\u7528\u6237\u53e3\u4ee4\uff0c\u5f88\u5bb9\u6613\u53d7\u5230\u4e2d\u95f4\u4eba\uff08man-in-the-middle\uff09\u653b\u51fb\u65b9\u5f0f\u7684\u653b\u51fb\u3002\u5c31\u662f\u5b58\u5728\u53e6\u4e00\u4e2a\u4eba\u6216\u8005\u4e00\u53f0\u673a\u5668\u5192\u5145\u771f\u6b63\u7684\u670d\u52a1\u5668\u63a5\u6536\u7528\u6237\u4f20\u7ed9\u670d\u52a1\u5668\u7684\u6570\u636e\uff0c\u7136\u540e\u518d\u5192\u5145\u7528\u6237\u628a\u6570\u636e\u4f20\u7ed9\u771f\u6b63\u7684\u670d\u52a1\u5668\u3002\n\n\u800cSSH\u662f\u76ee\u524d\u8f83\u53ef\u9760\uff0c\u4e13\u4e3a\u8fdc\u7a0b\u767b\u5f55\u4f1a\u8bdd\u548c\u5176\u4ed6\u7f51\u7edc\u670d\u52a1\u63d0\u4f9b\u5b89\u5168\u6027\u7684\u534f\u8bae\u3002\u5229\u7528SSH\u534f\u8bae\u53ef\u4ee5\u6709\u6548\u9632\u6b62\u8fdc\u7a0b\u7ba1\u7406\u8fc7\u7a0b\u4e2d\u7684\u4fe1\u606f\u6cc4\u9732\u95ee\u9898\u3002\u901a\u8fc7SSH\u53ef\u4ee5\u5bf9\u6240\u6709\u4f20\u8f93\u7684\u6570\u636e\u8fdb\u884c\u52a0\u5bc6\uff0c\u4e5f\u80fd\u591f\u9632\u6b62DNS\u6b3a\u9a97\u548cIP\u6b3a\u9a97\u3002\n\nSSH\u4e4b\u53e6\u4e00\u9879\u4f18\u70b9\u4e3a\u5176\u4f20\u8f93\u7684\u6570\u636e\u53ef\u4ee5\u662f\u7ecf\u8fc7\u538b\u7f29\u7684\uff0c\u6240\u4ee5\u53ef\u4ee5\u52a0\u5feb\u4f20\u8f93\u7684\u901f\u5ea6\u3002SSH\u6709\u5f88\u591a\u529f\u80fd\uff0c\u5b83\u65e2\u53ef\u4ee5\u4ee3\u66ffTelnet\uff0c\u53c8\u53ef\u4ee5\u4e3aFTP\u3001POP\u3001\u751a\u81f3\u4e3aPPP\u63d0\u4f9b\u4e00\u4e2a\u5b89\u5168\u7684\u201c\u901a\u9053\u201d\u3002\n<\/code><\/pre>\n
\u4f7f\u7528\u5f62\u5f0f<\/h3>\n
\n     ssh [-1246AaCfgKkMNnqsTtVvXxYy] [-b bind_address] [-c cipher_spec]\n         [-D [bind_address:]port] [-e escape_char] [-F configfile] [-I pkcs11]\n         [-i identity_file] [-L [bind_address:]port:host:hostport]\n         [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]\n         [-R [bind_address:]port:host:hostport] [-S ctl_path] [-W host:port]\n         [-w local_tun[:remote_tun]] [user@]hostname [command]\n<\/code><\/pre>\n
<\/p>\n
\u4e3b\u8981\u9009\u9879\u8bf4\u660e<\/h3>\n
ssh\uff08SSH \u5ba2\u6237\u7aef\uff09\u662f\u4e00\u4e2a\u7a0b\u5e8f\uff0c\u7528\u4e8e\u767b\u5f55\u8fdc\u7a0b\u4e3b\u673a\u548c\u7528\u4e8e\u5728\u8fdc\u7a0b\u4e3b\u673a\u4e0a\u6267\u884c\u547d\u4ee4\uff0c\u5728\u4e0d\u5b89\u5168\u7f51\u7edc\u4e0a\u7684\u4e24\u53f0\u4e0d\u4fe1\u4efb\u7684\u4e3b\u673a\u4e4b\u95f4\u63d0\u4f9b\u4e86\u5b89\u5168\u52a0\u5bc6\u7684\u901a\u4fe1\u3002X11\u8fde\u63a5\u548c\u4efb\u610f\u7684TCP\u7aef\u53e3\u80fd\u5728\u5b89\u5168\u901a\u9053\u4e0a\u8f6c\u53d1\u3002<\/p>\n
\u5982\u679c\u6307\u5b9a\u4e86command\uff0c\u5b83\u5c06\u5728\u8fdc\u7a0b\u4e3b\u673a\u4e0a\u6267\u884c\uff0c\u800c\u4e0d\u662f\u8fdb\u5165\u767b\u5f55shell\u3002<\/p>\n
    \n
  • -1<\/code>\uff1a\u5f3a\u5236ssh\u53ea\u5c1d\u8bd5\u7248\u672c1\u7684\u534f\u8bae\u3002<\/p>\n<\/li>\n
  • \n
    -2<\/code>\uff1a\u5f3a\u5236ssh\u53ea\u5c1d\u8bd5\u7248\u672c2\u7684\u534f\u8bae\u3002<\/p>\n<\/li>\n
  • \n
    -4<\/code>\uff1a\u5f3a\u5236ssh\u53ea\u4f7f\u7528IPv4\u5730\u5740\u3002<\/p>\n<\/li>\n
  • \n
    -6<\/code>\uff1a\u5f3a\u5236ssh\u53ea\u4f7f\u7528IPv6\u5730\u5740\u3002<\/p>\n<\/li>\n
  • \n
    -A<\/code>\uff1a\u5141\u8bb8\u8f6c\u53d1\u8ba4\u8bc1\u4ee3\u7406\u8fde\u63a5\u3002\u8fd9\u53ef\u4ee5\u5728\u914d\u7f6e\u6587\u4ef6\u91cc\u4ee5host\u4e3a\u57fa\u7840\u6307\u5b9a\u3002<\/p>\n<\/li>\n
  • \n
    -a<\/code>\uff1a\u7981\u6b62\u8f6c\u53d1\u8ba4\u8bc1\u4ee3\u7406\u8fde\u63a5\u3002<\/p>\n<\/li>\n
  • \n
    -b  bind_address<\/code>\uff1a\u5728\u672c\u673a\u4e0a\u7528\u7684bind_address\u4f5c\u4e3a\u8fde\u63a5\u7684\u6e90\u5730\u5740\u3002\u53ea\u5728\u7cfb\u7edf\u6709\u4e0d\u6b62\u4e00\u4e2a\u5730\u5740\u65f6\u6709\u7528\u3002<\/p>\n<\/li>\n
  • \n
    -C<\/code>\uff1a\u8bf7\u6c42\u538b\u7f29\u6240\u6709\u7684\u6570\u636e\uff08\u5305\u62ecstdin\uff0cstdout\uff0cstderr\u548c\u7528\u4e8eX11\u548cTCP\u8fde\u63a5\u7684\u6570\u636e\uff09\u3002\u538b\u7f29\u7b97\u6cd5\u4e0egzip\u4f7f\u7528\u7684\u4e00\u6837\u3002<\/p>\n<\/li>\n
  • \n
    -c  cipher_spec<\/code>\uff1a\u9009\u62e9\u52a0\u5bc6\u89c4\u683c\uff08cipher specification\uff09\u7528\u4e8e\u52a0\u5bc6\u4f1a\u8bdd\u3002\u53ef\u9009\u503c\u6709\uff1a”3des”, “blowfish”, “des”\uff0c\u9ed8\u8ba4\u662f”3des”\u3002<\/p>\n<\/li>\n
  • \n
    -D  [bind_address:]port<\/code>\uff1a\u6307\u5b9a\u4e00\u4e2a\u672c\u5730\u201c\u52a8\u6001\u7684\u201d\u5e94\u7528\u7ea7\u522b\u7684\u7aef\u53e3\u8f6c\u53d1\u3002\u5206\u914d\u4e00\u4e2asocket\u6765\u76d1\u542c\u672c\u5730\u7684port\u7aef\u53e3\uff0c\u53ef\u9009\u62e9\u7ed1\u5b9a\u5230\u6307\u5b9a\u7684bind_address\uff0c\u5f53\u6709\u8fde\u63a5\u5230\u8fd9\u4e2a\u7aef\u53e3\u65f6\uff0c\u8fde\u63a5\u5728\u5b89\u5168\u901a\u9053\u4e0a\u8f6c\u53d1\uff0c\u5e94\u7528\u7a0b\u5e8f\u534f\u8bae\u7528\u4e8e\u51b3\u5b9a\u4ece\u8fdc\u7a0b\u4e3b\u673a\u8fde\u63a5\u5230\u54ea\u91cc\uff08\u5e94\u7528\u7684\u76ee\u6807\u4e3b\u673a\uff09\u3002\u5f53\u524d\u53ea\u652f\u6301socks4\u548csocks5\u534f\u8bae\uff0cssh\u626e\u6f14\u4e00\u4e2aSOCKS\u670d\u52a1\u5668\u3002\u53ea\u6709root\u7528\u6237\u624d\u80fd\u8f6c\u53d1\u79c1\u6709\u7aef\u53e3\u3002\u52a8\u6001\u7aef\u53e3\u8f6c\u53d1\u4e5f\u53ef\u4ee5\u5728\u914d\u7f6e\u6587\u4ef6\u91cc\u6307\u5b9a\u3002<\/p>\n<\/li>\n
  • \n
    -e  escape_char<\/code>\uff1a\u4e3a\u4f1a\u8bdd\u7684pty\u8bbe\u7f6e\u8f6c\u4e49\u5b57\u7b26\uff08\u9ed8\u8ba4’~’\uff09\u3002\u8f6c\u4e49\u5b57\u7b26\u53ea\u6709\u5728\u884c\u7684\u5f00\u5934\u65f6\u88ab\u8bc6\u522b\u3002\u8f6c\u4e49\u5b57\u7b26\u540e\u63a5\u53e5\u70b9\uff08’.’\uff09\u5173\u95ed\u8fde\u63a5\uff1b\u540e\u63a5Ctrl-Z \u6302\u8d77\u8fde\u63a5\uff1b\u540e\u63a5\u81ea\u8eab\u53d1\u9001\u8f6c\u4e49\u5b57\u7b26\u4e00\u6b21\u3002\u8bbe\u4e3a\u7a7a\uff08\u201cnone\u201d\uff09\u7981\u6b62\u4efb\u4f55\u8f6c\u4e49\uff0c\u8ba9\u4f1a\u8bdd\u5b8c\u5168\u900f\u660e\u3002<\/p>\n<\/li>\n
  • \n
    -F  configfile<\/code>\uff1a\u6307\u5b9a\u4e00\u4e2a\u53ef\u9009\u7684\u7528\u6237\u7279\u5b9a\u7684\u914d\u7f6e\u6587\u4ef6\uff0c\u9ed8\u8ba4\u7684\u7528\u6237\u7279\u5b9a\u7684\u914d\u7f6e\u6587\u4ef6\u662f~\/.ssh\/config<\/code>\u3002\u5982\u679c\u5728\u547d\u4ee4\u884c\u6307\u5b9a\u4e86\u914d\u7f6e\u6587\u4ef6\uff0c\u7cfb\u7edf\u8303\u56f4\u7684\u914d\u7f6e\u6587\u4ef6\uff08\/etc\/ssh\/ssh_config<\/code>\uff09\u5c06\u88ab\u5ffd\u7565\u3002<\/p>\n<\/li>\n
  • \n
    -f<\/code>\uff1a\u8bf7\u6c42ssh\u5728\u547d\u4ee4\u6267\u884c\u524d\u8fdb\u5165\u540e\u53f0\u3002\u5982\u679cssh\u9700\u8981\u5bc6\u7801\u6216\u79c1\u94a5\u5bc6\u7801\uff0c\u4f46\u7528\u6237\u5e0c\u671b\u5b83\u5728\u540e\u53f0\u8fd0\u884c\u5c06\u975e\u5e38\u6709\u7528\u3002\u8fd9\u9690\u542b\u8fd9-n<\/code>\u3002<\/p>\n<\/li>\n
  • \n
    -g<\/code>\uff1a\u8fd0\u884c\u8fdc\u7a0b\u4e3b\u673a\u8fde\u63a5\u5230\u672c\u5730\u7684\u8f6c\u53d1\u7aef\u53e3\u3002<\/p>\n<\/li>\n
  • \n
    -I  pkcs11<\/code>\uff1a\u6307\u5b9aPKCS#11\u5171\u4eab\u7c7b\u5e93\uff0cssh\u7528\u4e8e\u901a\u4fe1\u7684\u3002<\/p>\n<\/li>\n
  • \n
    -i  identity_file<\/code>\uff1a\u9009\u62e9\u4e00\u4e2a\u6587\u4ef6\u7528\u4e8e\u8bfb\u53d6\u8eab\u4efd\u8bc1\u4e66\uff08\u79c1\u94a5\uff09\uff0c\u7528\u4e8e\u516c\u94a5\u8ba4\u8bc1\u3002\u9ed8\u8ba4\u7684\u662f~\/.ssh\/identity<\/code>\u7528\u4e8e\u534f\u8bae\u7248\u672c1\uff0c~\/.ssh\/id_dsa<\/code>, ~\/.ssh\/id_ecdsa<\/code>, ~\/.ssh\/id_rsa<\/code>\u7528\u4e8e\u534f\u8bae\u7248\u672c2\u3002\u8eab\u4efd\u8bc1\u4e66\u6587\u4ef6\u53ef\u4ee5\u6307\u5b9a\u5728host\u7279\u5b9a\u57fa\u7840\u4e0a\u7684\u914d\u7f6e\u6587\u4ef6\u91cc\u3002\u4e5f\u53ef\u4ee5\u6709\u591a\u4e2a -i<\/code> \u9009\u9879\u3002ssh will also try to load certificate information from the filename obtained by appending -cert.pub<\/code> to identity filenames.<\/p>\n<\/li>\n
  • \n
    -L [bind_address:]port:host:hostport<\/code>\uff1a\u6307\u5b9a\u672c\u5730\uff08\u5ba2\u6237\u7aef\uff09\u4e3b\u673a\u7ed9\u5b9a\u7684\u7aef\u53e3\u7528\u4e8e\u8f6c\u53d1\u5230\u7ed9\u5b9a\u7684\u8fdc\u7a0b\u4fa7\u7684\u4e3b\u673a\u548c\u7aef\u53e3\u3002\u5206\u914d\u4e00\u4e2asocket\u7528\u4e8e\u76d1\u542c\u672c\u5730\u4fa7\u7684port\uff0c\u53ef\u9009\u5730\u7ed1\u5b9a\u5230\u6307\u5b9a\u7684bind_address\u3002\u5f53\u6709\u8fde\u63a5\u5230\u8fd9\u4e2a\u7aef\u53e3\uff0c\u8fde\u63a5\u5728\u5b89\u5168\u901a\u9053\u4e0a\u8f6c\u53d1\uff0c\u4ece\u8fdc\u7a0b\u4e3b\u673a\uff08ssh\u670d\u52a1\u5668\uff09\u8fde\u63a5\u5230host\u7684hostport\u7aef\u53e3\u3002\u7aef\u53e3\u8f6c\u4e49\u4e5f\u53ef\u4ee5\u5728\u914d\u7f6e\u6587\u4ef6\u91cc\u6307\u5b9a\u3002<\/p>\n<\/li>\n
  • \n
    -l  login_name<\/code>\uff1a\u6307\u5b9a\u7528\u6237\u7528\u4e8e\u767b\u5f55\u5230\u8fdc\u7a0b\u4e3b\u673a\u3002\u53ef\u4ee5\u5728\u4e3b\u673a\u7279\u5b9a\u7684\u914d\u7f6e\u6587\u4ef6\u91cc\u6307\u5b9a\u3002<\/p>\n<\/li>\n
  • \n
    -N<\/code>\uff1a\u4e0d\u6267\u884c\u8fdc\u7a0b\u547d\u4ee4\u3002\u8fd9\u5728\u53ea\u8f6c\u53d1\u7aef\u53e3\u4e0a\u6709\u7528\uff08\u53ea\u652f\u6301\u534f\u8bae\u7248\u672c2\uff09\u3002<\/p>\n<\/li>\n
  • \n
    -n<\/code>\uff1a\u628astdin\u91cd\u5b9a\u5411\u81ea\/dev\/null<\/code>\uff08\u5b9e\u9645\u4e0a\u7981\u6b62\u4ecestdin\u8bfb\u53d6\uff09\u5f53ssh\u8fd0\u884c\u5728\u540e\u53f0\u65f6\u5fc5\u987b\u4f7f\u7528\u3002<\/p>\n<\/li>\n
  • \n
    -p  port<\/code>\uff1a\u8fde\u63a5\u5230\u8fdc\u7a0b\u4e3b\u673a\u7684port\u7aef\u53e3\u3002\u53ef\u4ee5\u5728\u4e3b\u673a\u7279\u5b9a\u7684\u914d\u7f6e\u6587\u4ef6\u91cc\u6307\u5b9a\u3002<\/p>\n<\/li>\n
  • \n
    -q<\/code>\uff1a\u5b89\u9759\u6a21\u5f0f\u3002\u5bfc\u81f4\u8b66\u544a\u548c\u8bca\u65ad\u4fe1\u606f\u88ab\u6291\u5236\u3002<\/p>\n<\/li>\n
  • \n
    -R  [bind_address:]port:host:hostport<\/code>\uff1a\u6307\u5b9a\u8fdc\u7a0b\uff08\u670d\u52a1\u5668\u7aef\uff0cssh\u670d\u52a1\u5668\uff09\u4e3b\u673a\u7684\u7ed9\u5b9a\u7aef\u53e3\u7528\u4e8e\u8f6c\u53d1\u5230\u7ed9\u5b9a\u7684\u672c\u5730\u4fa7\u7684\u4e3b\u673a\u548c\u7aef\u53e3\u3002\u5de5\u4f5c\u673a\u5236\uff1a\u5728\u8fdc\u7a0b\u4e3b\u673a\u4fa7\u5206\u914d\u4e00\u4e2asocket\u76d1\u542cport\uff0c\u5f53\u6709\u8fde\u63a5\u5230\u8fd9\u4e2a\u7aef\u53e3\u65f6\uff0c\u8fde\u63a5\u5728\u5b89\u5168\u901a\u9053\u4e0a\u8f6c\u53d1\uff0c\u8fde\u63a5\u5230\u672c\u5730\u673a\u5668\u7684host\u548chostport\u7aef\u53e3\u3002<\/p>\n<\/li>\n
  • \n
    -T<\/code>\uff1a\u7981\u6b62\u5206\u914d\u4f2atty\u3002<\/p>\n<\/li>\n
  • \n
    -t<\/code>\uff1a\u5f3a\u5236\u5206\u914d\u5206\u914d\u4f2atty\u3002\u8fd9\u5728\u8fdc\u7a0b\u673a\u5668\u4e0a\u6267\u884c\u4efb\u610f\u57fa\u4e8escreen\u7684\u7a0b\u5e8f\u65f6\u975e\u5e38\u6709\u7528\u3002<\/p>\n<\/li>\n
  • \n
    -v<\/code>\uff1a\u5197\u957f\u6a21\u5f0f\uff0c\u5141\u8bb8ssh\u8f93\u51fa\u8c03\u8bd5\u4fe1\u606f\u3002<\/p>\n<\/li>\n
  • \n
    -W  host:port<\/code>\uff1a\u8bf7\u6c42\u5c06\u672c\u5730\u7684\u6807\u51c6\u8f93\u5165\u548c\u8f93\u51fa\u5728\u5b89\u5168\u901a\u9053\u4e0a\u8f6c\u53d1\u5230host\u7684port\u3002Implies -N, -T, ExitOnForwardFailure<\/code> and ClearAllForwardings<\/code> and works with Protocol version 2 only.<\/p>\n<\/li>\n
  • \n
    -X<\/code>\uff1a\u5141\u8bb8X11\u8f6c\u53d1\u3002<\/p>\n<\/li>\n
  • \n
    -X<\/code>\uff1a\u7981\u6b62X11\u8f6c\u53d1\u3002<\/p>\n<\/li>\n
  • \n
    -Y<\/code>\uff1a\u5141\u8bb8\u4fe1\u4efb\u7684X11\u8f6c\u53d1\u3002<\/p>\n<\/li>\n<\/ul>\n
    \u4f7f\u7528<\/h3>\n
    ssh\u4e3b\u8981\u6709\u4e09\u7c7b\u5e94\u7528\uff1a\u767b\u5f55\u3001\u8fdc\u7a0b\u64cd\u4f5c\u3001\u7aef\u53e3\u8f6c\u53d1\u3002<\/p>\n
    \u767b\u5f55<\/h4>\n
    ssh  coderbee@coderbee.net<\/code>\uff1a\u4f7f\u7528coderbee\u767b\u5f55coderbee.net\u4e3b\u673a\uff0c\u5982\u679c\u662f\u7b2c\u4e00\u6b21\u767b\u5f55\uff0cssh\u5ba2\u6237\u7aef\u663e\u793a\u670d\u52a1\u5668RSA\u7684\u6307\u7eb9\uff0c\u5e76\u8be2\u95ee\u662f\u5426\u7ee7\u7eed\u767b\u5f55\uff0c\u5982\u679c\u8f93\u5165yes<\/code>\u5219\u7ee7\u7eed\u767b\u5f55\u8fc7\u7a0b\uff0c\u63d0\u793a\u8f93\u5165\u5bc6\u7801\uff0c\u5bc6\u7801\u9a8c\u8bc1\u6b63\u786e\u540e\u8fdb\u5165\u767b\u5f55shell\u3002\u5982\uff1a<\/p>\n
    \n$ ssh coderbee@coderbee.net\nThe authenticity of host 'coderbee.net (198.56.238.193)' can't be established.\nRSA key fingerprint is 0a:0d:90:e1:28:bd:10:50:04:1d:68:51:ac:09:28:67.\nAre you sure you want to continue connecting (yes\/no)? yes\nWarning: Permanently added 'coderbee.net,198.56.238.193' (RSA) to the list of known hosts.\ncoderbee@coderbee.net's password:\nWelcome to Ubuntu 12.04 LTS (GNU\/Linux 2.6.32-042stab076.8 i686)\n\n* Documentation:  https:\/\/help.ubuntu.com\/\nLast login: Thu May 30 15:23:43 2013 from 111.148.4.64\ncoderbee@coderbee:~$\n<\/code><\/pre>\n
    \u7b2c\u4e00\u6b21\u767b\u5f55\u4e4b\u540e\uff0cssh\u4f1a\u628a\u8fd9\u4e2a\u4e3b\u673a\u4f5c\u4e3a\u5df2\u77e5\u7684\u4e3b\u673a\u8bb0\u5f55\u5728 ~\/.ssh\/known_hosts<\/code> \u6587\u4ef6\u91cc\uff0c\u4e0b\u6b21\u518d\u767b\u5f55\u7684\u65f6\u5019\uff0c\u5c31\u4e0d\u518d\u8be2\u95ee\u662f\u5426\u7ee7\u7eed\u767b\u5f55\uff0c\u800c\u662f\u76f4\u63a5\u8fdb\u5165\u8f93\u5165\u5bc6\u7801\u7684\u6b65\u9aa4\u3002<\/p>\n
    \u5982\u679c\u672c\u5730\u7528\u6237\u540d\u4e0e\u8fdc\u7a0b\u4e3b\u673a\u7528\u6237\u540d\u4e00\u6837\uff0c\u53ef\u4ee5\u7701\u7565\u7528\u6237\u540d\uff1assh  coderbee.net<\/code>\u3002<\/p>\n
    \u7528\u547d\u4ee4\u9009\u9879\u6307\u5b9a\u7528\u6237\u540d\uff1assh  -l  coderbee  coderbee.net<\/code><\/p>\n
    \u8fdc\u7a0b\u64cd\u4f5c<\/h4>\n
    \u5728\u670d\u52a1\u5668\u6267\u884c\u7b80\u5355\u7684\u64cd\u4f5c\uff1a<\/p>\n
    \n$ ssh coderbee@coderbee.net 'ls -l'\ntotal 160\ndrwxr-xr-x 4 coderbee coderbee   4096 May 28 22:05 codebase\n-rw-rw-r-- 1 coderbee coderbee 151302 Jun  6 10:35 hotspot-jvm-gc\ndrwxrwxr-x 2 coderbee coderbee   4096 May 15 10:42 learn\ndrwxrwxr-x 4 coderbee coderbee   4096 May 31 16:57 soft\n$ ssh coderbee@coderbee.net 'rm hotspot-jvm-gc'\n$\n<\/code><\/pre>\n
    \u628a\u672c\u5730\u7684\u6587\u4ef6\u4f5c\u4e3a\u547d\u4ee4\u5728\u670d\u52a1\u5668\u4e0a\u6267\u884c\u65f6\u7684\u6807\u51c6\u8f93\u5165\uff1a ssh coderbee@coderbee.net  'cat > ~\/.ssh\/authorized_keys' < id_rsa.pub<\/code><\/p>\n
    \u76ee\u5f55\u62f7\u8d1d\uff1acd && tar czv src | ssh coderbee@coderbee.net  'tar xz'<\/code><\/p>\n
    \u6ce8\u610f\uff1a\u590d\u6742\u7684\u8fdc\u7a0b\u547d\u4ee4\u6700\u597d\u7528\u5355\u5f15\u53f7\u5f15\u8d77\u7684\uff0c\u6bd4\u5982\u542b\u6709\u8f93\u51fa\u91cd\u5b9a\u5411\u7b26\u3001\u7ba1\u9053\u64cd\u4f5c\u7b26\u7b49\u7684\u3002<\/strong><\/p>\n
    \u7aef\u53e3\u8f6c\u53d1<\/h4>\n
    \u7aef\u53e3\u8f6c\u53d1\u4e5f\u79f0\u4e3aSSH\u96a7\u9053\uff0c\u96a7\u9053\u662f\u4e00\u79cd\u628a\u4e00\u79cd\u7f51\u7edc\u534f\u8bae\u5c01\u88c5\u8fdb\u53e6\u4e00\u79cd\u7f51\u7edc\u534f\u8bae\u8fdb\u884c\u4f20\u8f93\u7684\u6280\u672f\u3002SSH\u96a7\u9053\u901a\u5e38\u4f1a\u7ed1\u5b9a\u4e00\u4e2a\u672c\u5730\u7aef\u53e3\uff0c\u6240\u6709\u53d1\u5411\u8fd9\u4e2a\u7aef\u53e3\u7684\u6570\u636e\u5305\uff0c\u90fd\u4f1a\u88ab\u52a0\u5bc6\u5e76\u900f\u660e\u5730\u4f20\u8f93\u5230\u8fdc\u7aef\u7cfb\u7edf\u3002<\/p>\n
    \u7aef\u53e3\u8303\u56f4\u5728 1 – 1024 \u7684\u53ea\u80fd\u7528root\u7528\u6237\u6765\u8f6c\u53d1\u3002<\/strong><\/p>\n
    \u8f6c\u53d1\u6709\u4e09\u79cd\u7c7b\u578b\uff1a\u672c\u5730\u7aef\u53e3\u8f6c\u53d1\u3001\u8fdc\u7a0b\u7aef\u53e3\u8f6c\u53d1\u3001\u52a8\u6001\u7aef\u53e3\u8f6c\u53d1\u3002<\/p>\n
    \u672c\u5730\u7aef\u53e3\u8f6c\u53d1<\/h5>\n
    \u547d\u4ee4\u7684\u4e00\u822c\u683c\u5f0f\uff1assh  -L  listen_port:DST_Host:DST_port   user@Tunnel_Host<\/code><\/p>\n
    \u4f7f\u7528\u573a\u666f\uff1ahostA\u4e0d\u80fd\u8bbf\u95eehostC\uff0c\u4f46\u53ef\u4ee5\u8bbf\u95eehostB\uff0c\u800chostB\u53ef\u4ee5\u8bbf\u95eehostC\uff0c\u6240\u6709hostA\u53ef\u4ee5\u901a\u8fc7hostB\u6765\u8bbf\u95eehostC\uff0c\u5728hostA\u4e0a\u6267\u884c\uff1assh  -L  8080:hostC:22  root@hostB<\/code>\uff0c\u8fd9\u6837\u8bbf\u95ee\u672c\u5730\u76848080\u7aef\u53e3\u5c31\u53ef\u4ee5\u8bbf\u95eehostC\u768422\u7aef\u53e3\u3002<\/p>\n
    \u5de5\u4f5c\u673a\u5236\uff1assh\u76d1\u542c\u672c\u5730\u7684 listen_port \uff0c\u5e76\u5efa\u7acb\u4e00\u6761ssh\u901a\u9053\u5230 Tunnel_Host \uff0c\u5f53\u6709\u8fde\u63a5\u8fde\u63a5\u5230\u672c\u5730\u7684listen_port \u65f6\uff0c\u7528ssh\u901a\u9053\u628a\u8fde\u63a5\u8f6c\u53d1\u5230DST_Host:DST_port\u3002\u6240\u4ee5\u8bbf\u95ee\u672c\u5730\u7684listen_port \u5c31\u76f8\u5f53\u4e8e\u8bbf\u95ee\u4e86DST_Host:DST_port\u3002<\/p>\n
    \u8fdc\u7a0b\u7aef\u53e3\u8f6c\u53d1<\/h5>\n
    \u547d\u4ee4\u7684\u4e00\u822c\u683c\u5f0f\uff1assh  -L   listen_port:DST_Host:DST_port   user@Tunnel_Host<\/code><\/p>\n
    \u4f7f\u7528\u573a\u666f\uff1ahostA\u5fc5\u987b\u501f\u52a9hostB\u8bbf\u95eehostC\uff0c\u4f46\u662fhostB\u662f\u5185\u7f51\u673a\u5668\uff0chostA\u662f\u516c\u7f51\u673a\u5668\uff0chostB\u53ef\u4ee5\u8bbf\u95eehostA\uff0c\u4f46hostA\u4e0d\u80fd\u8bbf\u95eehostB\u3002\u8fd9\u6837\u672c\u5730\u7aef\u53e3\u8f6c\u53d1\u4e0d\u80fd\u89e3\u51b3\u95ee\u9898\uff0c\u9700\u8981\u8fdc\u7a0b\u7aef\u53e3\u8f6c\u53d1\u3002
    \n\u5728hostB\u4e0a\u6267\u884c\uff1assh  -R  8080:hostC:21  hostA<\/code>\uff0c\u610f\u601d\u662fhostB\u8fde\u63a5\u5230hostA\u4e0a\uff0c\u8ba9hostA\u76d1\u542c\u81ea\u5df1\u76848080\u7aef\u53e3\uff0c\u5c06\u6240\u6709\u8fde\u63a5\u5230hostA\u76848080\u8fde\u63a5\u7684\u6570\u636e\u901a\u8fc7hostB\u8f6c\u53d1\u5230hostC\u768421\u7aef\u53e3\u3002<\/p>\n
    \u52a8\u6001\u7aef\u53e3\u8f6c\u53d1<\/h4>\n
    \u524d\u9762\u7684\u672c\u5730\u7aef\u53e3\u8f6c\u53d1\u4e0e\u8fdc\u7a0b\u7aef\u53e3\u8f6c\u53d1\u90fd\u662f\u901a\u8fc7\u7b2c\u4e09\u65b9\u7684\u4e3b\u673a\u8bbf\u95ee\u4e00\u53f0\u6307\u5b9a\u7684\u670d\u52a1\u5668\uff0c\u4f46\u5982\u679c\u9700\u8981\u501f\u52a9\u7b2c\u4e09\u65b9\u7684\u4e3b\u673a\u8bbf\u95ee\u4efb\u610f\u7684\u670d\u52a1\u5668\uff0c\u5c31\u9700\u8981\u52a8\u6001\u7aef\u53e3\u8f6c\u53d1\u3002<\/p>\n
    \u52a8\u6001\u7aef\u53e3\u8f6c\u53d1\u4e5f\u53ebSOCKS\u4ee3\u7406\u3002<\/p>\n
    \u547d\u4ee4\u7684\u4e00\u822c\u683c\u5f0f\uff1assh  -D  listen_port   user@Tunnel_Host<\/code>\uff0c\u610f\u601d\u662fssh\u7528\u4e00\u6761socket\u76d1\u542c\u672c\u5730\u7684listen_port\uff0c\u5e76\u5efa\u7acbssh\u901a\u9053\u5230Tunnel_Host\uff0c\u5f53\u6709\u8fde\u63a5\u8fde\u63a5\u5230listen_port\uff0c\u5c31\u901a\u8fc7\u5b89\u5168\u901a\u9053\u8f6c\u53d1\u5230Tunnel_Host\uff0cTunnel_Host\u6839\u636e\u521b\u5efa\u8fde\u63a5\u7684\u5e94\u7528\u7684\u534f\u8bae\u6765\u8bbf\u95ee\u5e94\u7528\u6240\u8981\u8bbf\u95ee\u7684\u670d\u52a1\u5668\uff0c\u5c31\u662f\u8bf4\uff0c\u8fd9\u4e00\u4e2a\u4ee3\u7406\uff0c\u5b89\u5168\u7684\u4ee3\u7406\u3002\u8fd9\u662f\u4e00\u4e2a\u6700\u57fa\u672c\u7684\u68af\u5b50\uff0c\u80fd\u7528\u6765\u8bbf\u95ee\u4f60\u672c\u673a\u4e0d\u80fd\u8bbf\u95ee\u4f46Tunnel_Host\u53ef\u4ee5\u8bbf\u95ee\u7684\u670d\u52a1\u3002<\/p>\n
    \u4e00\u822c\u7684\u68af\u5b50\u53ef\u4ee5\u8fd9\u6837\u5efa\u7acb\uff1a ssh  -qTfnN  -D  8080  root@coderbee.net<\/code>\uff0c\u518d\u628a\u6d4f\u89c8\u5668\u7684\u4ee3\u7406\u8bbe\u4e3a127.0.0.1\uff0c\u7aef\u53e38080\u5c31\u884c\u4e86\u3002<\/p>\n\n
    \u6b22\u8fce\u5173\u6ce8\u6211\u7684\u5fae\u4fe1\u516c\u4f17\u53f7: coderbee\u7b14\u8bb0<\/strong>\uff0c\u53ef\u4ee5\u66f4\u53ca\u65f6\u56de\u590d\u4f60\u7684\u8ba8\u8bba\u3002<\/p>\n
    <\/p>\n","protected":false},"excerpt":{"rendered":"
    ssh \u7b80\u4ecb SSH\uff08secure shell\uff09\u662f\u4e00\u79cd\u7f51\u7edc\u534f\u8bae\uff0c\u7528\u4e8e\u8ba1\u7b97\u673a\u4e4b\u95f4\u7684 … \u7ee7\u7eed\u9605\u8bfb →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[29,52],"_links":{"self":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/174"}],"collection":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/comments?post=174"}],"version-history":[{"count":3,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/174\/revisions"}],"predecessor-version":[{"id":177,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/174\/revisions\/177"}],"wp:attachment":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/media?parent=174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/categories?post=174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/tags?post=174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}