| 1 |
On Mon, Mar 27, 2006 at 07:04:44PM -0800, maxim wexler wrote |
| 2 |
|
| 3 |
> Okay, I'll try it. Can you give me some hints on how |
| 4 |
> to edit the config file keeping in mind it's only for |
| 5 |
> a crossover LAN and security is _not_ and issue? It's |
| 6 |
> to spare me the ordeal of downloading to one machine |
| 7 |
> and then having to burn to a CD just so I can put it |
| 8 |
> on another machine 5 feet away. |
| 9 |
|
| 10 |
Step 1 is to make sure that you can traceroute or ping from one |
| 11 |
machine to the other. Once you know that you're connected, you can |
| 12 |
"emerge openssh". You can run with /etc/ssh/sshd_config left at default |
| 13 |
values. But you'll want to make a few changes after that. The reasons |
| 14 |
for using keys rather than passwords are security and convenience. A |
| 15 |
1024-bit key is a helluva lot harder to break than brute-forcing userID |
| 16 |
password combos. And you won't have to enter your password each time |
| 17 |
you connect to the host. This allows you to use scp in scripts and even |
| 18 |
in cron jobs. Make sure that sshd is running on the target machine. |
| 19 |
"/etc/init.d/sshd start" starts it. Put it into default with etc-update |
| 20 |
to have it come up at bootup. |
| 21 |
|
| 22 |
Some notes... |
| 23 |
- 1st time you try to connect to a host you'll be asked to confirm. |
| 24 |
If you say yes, the host will be listed in ~/.ssh/known_hosts. If |
| 25 |
that host ever changes IP address, ssh will scream blue murder when |
| 26 |
you try to connect to it. |
| 27 |
|
| 28 |
- to start a telnet-like SecureSHell (hence the name "ssh") session |
| 29 |
you connect like one of the following example lines... |
| 30 |
ssh user_id@machine_name |
| 31 |
ssh user_id@192.168.0.2 |
| 32 |
|
| 33 |
- to copy file(s) from target machine to you... |
| 34 |
scp user_id@machine_name:filename . |
| 35 |
scp user_id@192.168.0.2:photos/*.jpeg myphotos/ |
| 36 |
|
| 37 |
- to copy entire directory from target machine to you... |
| 38 |
scp -r user_id@machine_name:photos . |
| 39 |
scp -r user_id@192.168.0.2:photos myphotos/ |
| 40 |
|
| 41 |
- to copy from your machine to the target machine, the examples look |
| 42 |
like so... |
| 43 |
scp user_id@machine_name:filename . |
| 44 |
scp user_id@192.168.0.2:photos/*.jpeg myphotos/ |
| 45 |
scp -r photos user_id@machine_name:. |
| 46 |
scp -r myphotos user_id@192.168.0.2:photos/ |
| 47 |
|
| 48 |
|
| 49 |
-- |
| 50 |
Walter Dnes <waltdnes@××××××××.org> In linux /sbin/init is Job #1 |
| 51 |
My musings on technology and security at http://tech_sec.blog.ca |
| 52 |
-- |
| 53 |
gentoo-user@g.o mailing list |
Archives