1 |
On Mon, Mar 27, 2006 at 07:04:44PM -0800, maxim wexler wrote |
2 |
|
3 |
> Okay, I'll try it. Can you give me some hints on how |
4 |
> to edit the config file keeping in mind it's only for |
5 |
> a crossover LAN and security is _not_ and issue? It's |
6 |
> to spare me the ordeal of downloading to one machine |
7 |
> and then having to burn to a CD just so I can put it |
8 |
> on another machine 5 feet away. |
9 |
|
10 |
Step 1 is to make sure that you can traceroute or ping from one |
11 |
machine to the other. Once you know that you're connected, you can |
12 |
"emerge openssh". You can run with /etc/ssh/sshd_config left at default |
13 |
values. But you'll want to make a few changes after that. The reasons |
14 |
for using keys rather than passwords are security and convenience. A |
15 |
1024-bit key is a helluva lot harder to break than brute-forcing userID |
16 |
password combos. And you won't have to enter your password each time |
17 |
you connect to the host. This allows you to use scp in scripts and even |
18 |
in cron jobs. Make sure that sshd is running on the target machine. |
19 |
"/etc/init.d/sshd start" starts it. Put it into default with etc-update |
20 |
to have it come up at bootup. |
21 |
|
22 |
Some notes... |
23 |
- 1st time you try to connect to a host you'll be asked to confirm. |
24 |
If you say yes, the host will be listed in ~/.ssh/known_hosts. If |
25 |
that host ever changes IP address, ssh will scream blue murder when |
26 |
you try to connect to it. |
27 |
|
28 |
- to start a telnet-like SecureSHell (hence the name "ssh") session |
29 |
you connect like one of the following example lines... |
30 |
ssh user_id@machine_name |
31 |
ssh user_id@192.168.0.2 |
32 |
|
33 |
- to copy file(s) from target machine to you... |
34 |
scp user_id@machine_name:filename . |
35 |
scp user_id@192.168.0.2:photos/*.jpeg myphotos/ |
36 |
|
37 |
- to copy entire directory from target machine to you... |
38 |
scp -r user_id@machine_name:photos . |
39 |
scp -r user_id@192.168.0.2:photos myphotos/ |
40 |
|
41 |
- to copy from your machine to the target machine, the examples look |
42 |
like so... |
43 |
scp user_id@machine_name:filename . |
44 |
scp user_id@192.168.0.2:photos/*.jpeg myphotos/ |
45 |
scp -r photos user_id@machine_name:. |
46 |
scp -r myphotos user_id@192.168.0.2:photos/ |
47 |
|
48 |
|
49 |
-- |
50 |
Walter Dnes <waltdnes@××××××××.org> In linux /sbin/init is Job #1 |
51 |
My musings on technology and security at http://tech_sec.blog.ca |
52 |
-- |
53 |
gentoo-user@g.o mailing list |