无验证登陆是为shell做基础

首先在客户端建立一对SSH密钥
然后将公钥传给SSH服务器
[mio@localhost /]$ ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/home/mio/.ssh/id_rsa):
/home/mio/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/mio/.ssh/id_rsa.
Your public key has been saved in /home/mio/.ssh/id_rsa.pub.
The key fingerprint is:
16:07:03:10:7d:68:2b:72:1e:35:fa:fe:ea:d4:7e:85 mio@localhost.localdomain
[mio@localhost /]$ cd ~
[mio@localhost ~]$ cd .ssh
[mio@localhost .ssh]$ ls -la
total 24
drwx------ 2 mio mio 4096 Apr 10 06:32 .
drwx------ 4 mio mio 4096 Apr 10 06:00 ..
-rw------- 1 mio mio 1671 Apr 10 06:49 id_rsa
-rw-r--r-- 1 mio mio 407 Apr 10 06:49 id_rsa.pub
-rw-r--r-- 1 mio mio 1181 Apr 10 06:37 known_hosts
[mio@localhost .ssh]$ sftp uyi@192.168.1.201
Connecting to 192.168.1.201...
uyi@192.168.1.201mio_#39;s password:
sftpmio_gt; pwd
Remote working directory: /home/uyi
sftpmio_gt; cd .ssh
Couldnmio_#39;t canonicalise: No such file or directory
sftpmio_gt; mkdir .ssh
sftpmio_gt; cd .ssh
sftpmio_gt; put ./id_rsa.pub
Uploading ./id_rsa.pub to /home/uyi/.ssh/id_rsa.pub
./id_rsa.pub 100% 407 0.4KB/s 00:00
sftpmio_gt; exit
[mio@localhost .ssh]$

在SSH服务器将接到的公钥转存为authorized_keys文件
并保证次文件为644 目录为700
[root@mio_U2 /]# su uyi
[uyi@mio_U2 /]$ cd ~
[uyi@mio_U2 ~]$ cd .ssh/
[uyi@mio_U2 .ssh]$ ls -la
total 12
drwxrwxr-x 2 uyi uyi 4096 Apr 5 03:11 .
drwx------ 4 uyi uyi 4096 Apr 5 03:10 ..
-rw-r--r-- 1 uyi uyi 407 Apr 5 03:11 id_rsa.pub
[uyi@mio_U2 .ssh]$ touch authorized_keys
[uyi@mio_U2 .ssh]$ cat id_rsa.pub mio_gt;mio_gt; authorized_keys
[uyi@mio_U2 .ssh]$ chmod 644 authorized_keys
[uyi@mio_U2 .ssh]$ ls -la
total 16
drwxrwxr-x 2 uyi uyi 4096 Apr 5 03:13 .
drwx------ 4 uyi uyi 4096 Apr 5 03:10 ..
-rw-r--r-- 1 uyi uyi 407 Apr 5 03:13 authorized_keys
-rw-r--r-- 1 uyi uyi 407 Apr 5 03:11 id_rsa.pub
[uyi@mio_U2 .ssh]$ cd ..
[uyi@mio_U2 ~]$ chmod 700 .ssh
[uyi@mio_U2 ~]$ ls -la
total 40
drwx------ 4 uyi uyi 4096 Apr 5 03:10 .
drwxr-xr-x 5 root root 4096 Apr 5 03:08 ..
-rw-r--r-- 1 uyi uyi 33 Apr 5 03:08 .bash_logout
-rw-r--r-- 1 uyi uyi 176 Apr 5 03:08 .bash_profile
-rw-r--r-- 1 uyi uyi 124 Apr 5 03:08 .bashrc
-rw-r--r-- 1 uyi uyi 515 Apr 5 03:08 .emacs
drwxr-xr-x 4 uyi uyi 4096 Apr 5 03:08 .mozilla
drwx------ 2 uyi uyi 4096 Apr 5 03:13 .ssh
-rw-r--r-- 1 uyi uyi 658 Apr 5 03:08 .zshrc
[uyi@mio_U2 ~]$

然后我们就可以无验证登陆了
[mio@localhost .ssh]$ ssh uyi@192.168.1.201
[uyi@mio_U2 ~]$

上一篇:SFTP和异地直接复制SCP 下一篇:快递查询API