| rev |
line source |
|
paul@142
|
1 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
|
|
paul@142
|
2 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
paul@142
|
3 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
|
|
paul@142
|
4 <head>
|
|
paul@142
|
5 <title>SliTaz Handbook (en) - Secure SHell (SSH)</title>
|
|
paul@142
|
6 <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1" />
|
|
paul@142
|
7 <meta name="description" content="slitaz English handbook" />
|
|
paul@142
|
8 <meta name="expires" content="never" />
|
|
paul@142
|
9 <meta name="modified" content="2008-07-18 05:30:00" />
|
|
paul@142
|
10 <meta name="publisher" content="www.slitaz.org" />
|
|
paul@142
|
11 <meta name="author" content="Christophe Lincoln" />
|
|
paul@142
|
12 <link rel="shortcut icon" href="favicon.ico" />
|
|
paul@142
|
13 <link rel="stylesheet" type="text/css" href="book.css" />
|
|
paul@142
|
14 </head>
|
|
paul@142
|
15 <body bgcolor="#ffffff">
|
|
paul@142
|
16
|
|
paul@142
|
17 <!-- Header and quick navigation -->
|
|
paul@142
|
18 <div id="header">
|
|
paul@142
|
19 <div id="quicknav" align="right">
|
|
paul@142
|
20 <a name="top"></a>
|
|
paul@142
|
21 <a href="security.html">Security</a> |
|
|
paul@142
|
22 <a href="index.html">Table of contents</a>
|
|
paul@142
|
23 </div>
|
|
paul@142
|
24 <h1><font color="#3e1220">SliTaz Handbook (en)</font></h1>
|
|
paul@142
|
25 </div>
|
|
paul@142
|
26
|
|
paul@142
|
27 <!-- Content. -->
|
|
paul@142
|
28 <div id="content">
|
|
paul@142
|
29 <div class="content-right"></div>
|
|
paul@142
|
30
|
|
paul@142
|
31 <h2><font color="#df8f06">Secure SHell (SSH)</font></h2>
|
|
paul@142
|
32
|
|
paul@142
|
33 <ul>
|
|
paul@142
|
34 <li><a href="#about">About Dropbear.</a></li>
|
|
paul@142
|
35 <li><a href="#dbclient">Connecting to a remote host</a> - (dbclient).</li>
|
|
paul@142
|
36 <li><a href="#scp">Transfer files</a> - (scp).</li>
|
|
paul@142
|
37 <li><a href="#dropbearkey">Generate keys rsa/dss</a> - (dropbearkey).</li>
|
|
paul@142
|
38 <li><a href="#start-stop-restart">Start, stop, restart SSH server.</a></li>
|
|
paul@142
|
39 </ul>
|
|
paul@142
|
40
|
|
paul@142
|
41 <a name="about"></a>
|
|
paul@142
|
42 <h3>About Dropbear</h3>
|
|
paul@142
|
43 <p>
|
|
paul@142
|
44 Control and administer remotely with the Dropbear SSH secure server. Dropbear is a small SSH client/server
|
|
paul@142
|
45 supporting SSH 2. It's compatible with OpenSSH and uses ~/.ssh/authorized_keys for the management of public keys.
|
|
paul@142
|
46 Dropbear also provides it's own version of <code>scp</code>, allowing you to copy files
|
|
paul@142
|
47 between machines in a secure manner.
|
|
paul@142
|
48 </p>
|
|
paul@142
|
49 <p>
|
|
paul@142
|
50 Project website:
|
|
paul@142
|
51 <a href="http://matt.ucc.asn.au/dropbear/dropbear.html">matt.ucc.asn.au/dropbear/dropbear.html</a>
|
|
paul@142
|
52 </p>
|
|
paul@142
|
53
|
|
paul@142
|
54 <a name="dbclient"></a>
|
|
paul@142
|
55 <h3>Connecting to a remote host with dbclient</h3>
|
|
paul@142
|
56 <p>
|
|
paul@142
|
57 The configuration files for the SSH client are located in the ~/.ssh directory of each user, this contains
|
|
paul@142
|
58 the authorized_keys and known_hosts files. The directory ~/.ssh and known_hosts file are automatically created
|
|
paul@142
|
59 the first time you run the Dropbear client (dbclient).
|
|
paul@142
|
60 </p>
|
|
paul@142
|
61 <p>
|
|
paul@142
|
62 To connect to a remote host employing the user and machine name:
|
|
paul@142
|
63 </p>
|
|
paul@142
|
64 <pre> $ dbclient user@machine.org
|
|
paul@142
|
65 </pre>
|
|
paul@142
|
66 <p>
|
|
paul@142
|
67 You can also connect using the IP address of the machine:
|
|
paul@142
|
68 </p>
|
|
paul@142
|
69 <pre> $ dbclient user@192.168.0.2
|
|
paul@142
|
70 </pre>
|
|
paul@142
|
71
|
|
paul@142
|
72 <a name="scp"></a>
|
|
paul@142
|
73 <h3>Transfer of remote files with scp</h3>
|
|
paul@142
|
74 <p>
|
|
paul@142
|
75 To copy a file from one computer to another, scp can be utilized in the following ways. To copy a file
|
|
paul@142
|
76 named page.html to a remote directory of the user (don't forget the <code>:</code> after the machine name or
|
|
paul@142
|
77 IP address):
|
|
paul@142
|
78 </p>
|
|
paul@142
|
79 <pre> $ scp page.html user@machine.org:path/remote/directory
|
|
paul@142
|
80 </pre>
|
|
paul@142
|
81 <p>
|
|
paul@142
|
82 Copy a file from a remote machine to your local machine:
|
|
paul@142
|
83 </p>
|
|
paul@142
|
84 <pre> $ scp user@machine.org:path/remote/directory/page.html /path/your/directory
|
|
paul@142
|
85 </pre>
|
|
paul@142
|
86
|
|
paul@142
|
87 <a name="dropbearkey"></a>
|
|
paul@142
|
88 <h3>Generate rsa/dss keys with dropbearkey</h3>
|
|
paul@142
|
89 <p>
|
|
paul@142
|
90 Dropbear provides <code>dropbearkey</code> to generate the protected rsa and
|
|
paul@142
|
91 dss keys. Note that when you start the server for the first time, secure keys will be
|
|
paul@142
|
92 automatically generated if they don't already exist. You can use <code>dropbearkey</code> with
|
|
paul@142
|
93 the following argurments:
|
|
paul@142
|
94 </p>
|
|
paul@142
|
95 <pre> # dropbearkey -t rsa -f /etc/dropbear/dropbear_rsa_host_key
|
|
paul@142
|
96 # dropbearkey -t dss -f /etc/dropbear/dropbear_dss_host_key
|
|
paul@142
|
97 </pre>
|
|
paul@142
|
98
|
|
paul@142
|
99 <a name="start-stop-restart"></a>
|
|
paul@142
|
100 <h3>Start, stop, restart the SSH server</h3>
|
|
paul@142
|
101 <p>
|
|
paul@142
|
102 By default SliTaz will not start the SSH server at boot. To be launched automatically, <code>dropbear</code>
|
|
paul@142
|
103 must be added to the variable RUN_DAEMONS in the <code>/etc/rcS.conf</code> file. To start, stop or restart
|
|
paul@142
|
104 the SSH server, use the following commands: <code>/etc/init.d/dropbear [start|stop|restart]</code>.
|
|
paul@142
|
105 Example to start the server:
|
|
paul@142
|
106 </p>
|
|
paul@142
|
107 <pre> # /etc/init.d/dropbear start
|
|
paul@142
|
108 </pre>
|
|
paul@142
|
109 <p>
|
|
paul@142
|
110 Note that the server supports the passing of various options when launched. To change the default values,
|
|
paul@142
|
111 simple modify the daemons configuration file <code>/etc/daemons.conf</code>.
|
|
paul@142
|
112 </p>
|
|
paul@142
|
113
|
|
paul@142
|
114 <!-- End of content -->
|
|
paul@142
|
115 </div>
|
|
paul@142
|
116
|
|
paul@142
|
117 <!-- Footer. -->
|
|
paul@142
|
118 <div id="footer">
|
|
paul@142
|
119 <div class="footer-right"></div>
|
|
paul@142
|
120 <a href="#top">Top of the page</a> |
|
|
paul@142
|
121 <a href="index.html">Table of contents</a>
|
|
paul@142
|
122 </div>
|
|
paul@142
|
123
|
|
paul@142
|
124 <div id="copy">
|
|
paul@142
|
125 Copyright © 2008 <a href="http://www.slitaz.org/en/">SliTaz</a> -
|
|
paul@142
|
126 <a href="http://www.gnu.org/licenses/gpl.html">GNU General Public License</a>;<br />
|
|
paul@142
|
127 Documentation is under
|
|
paul@142
|
128 <a href="http://www.gnu.org/copyleft/fdl.html">GNU Free Documentation License</a>
|
|
paul@142
|
129 and code is <a href="http://validator.w3.org/">valid xHTML 1.0</a>.
|
|
paul@142
|
130 </div>
|
|
paul@142
|
131
|
|
paul@142
|
132 </body>
|
|
paul@142
|
133 </html>
|
|
paul@142
|
134
|