Created
June 21, 2022 14:49
-
-
Save xiaoysh8/0b292f828bbd031617e1c0a7f88a0971 to your computer and use it in GitHub Desktop.
Linux生成公钥和私钥
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Linux生成公钥和私钥 | |
| 服务器A: 192.168.1.1 | |
| 服务器B: 192.168.1.2 | |
| 服务器A: | |
| 配置: | |
| ssh-keygen -b 2048 -t rsa | |
| #这里的-b 2048 是密钥加密的长度,最好设大点,有消息称美国有黑客解决 ssh的密钥进行破解。 | |
| #http://bbs.yuloo.com/thread-860154-1-1.html | |
| 直接回车3次 | |
| key文件会保存在/root/.ssh目录下 | |
| 这时候.ssh目下会多出几个文件 | |
| id_rsa 私钥文件 | |
| id_rsa.pub 公钥文件,这个文件里的内容要放到其它主机里面去。 | |
| 查看 id_rsa.pub 文件 | |
| cat /roor/.ssh/id_rsa.pub | |
| ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIcAvh6Lz9ghftghtfghSv+kSrxVLC9UDKq27mg5vhfghAaWcgFgllZhfg2DLnGotmeL/08bp6jMW/ekSq1BY1eiouiluiliuliul2Rr84x0bB5YShhpgJwuPbwr/pymgukyukyukyuthjkiytiliunzdfkuykyuIZgVvgPTzNdN/RDwJMsafsdvgsdsfsdfdsfsdaflozStYcWjrwzYxsroDPBy4zjd0gH5zMYhj+vS4OOAZZ8rtHEfx+sTE0= [email protected] | |
| 服务器B: | |
| 配置: | |
| 新建文件夹与文件 | |
| mkdir /root/.ssh | |
| vim /root/.ssh/authorized_keys | |
| 把A服务器上查看的KEY文件内容,复制到B服务器的authorized_keys中 | |
| 主要是将[email protected]修改为[email protected] 这样方便查看是哪台服务器的KEY,可能会有多台服务器的key。 | |
| 修改sshd 的主配置文件,关闭密码认证登陆,使用key登陆。 | |
| vim /etc/ssh/sshd_config | |
| 找到 PasswordAuthentication yes | |
| 改成 PasswordAuthentication no | |
| service sshd restart | |
| 测试: | |
| 在A服务器上执行 | |
| ssh [email protected] | |
| 首次登陆会需要你输入YES。看是不是不需要密码就可以登陆B服务了。 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment