Ubuntu操作-02 设置SSH免密码
文章目录
- 1 设置hosts
- 2 生成本机密钥对
- 3 上传公钥到需要登录的服务器
- 4 测试登录
- 5 错误处理
主机操作系统为Ubuntu18.04,因为暂时没找到Ubuntu中与Xshell匹配的软件,故而登录其他开发环境主机一般通过ssh命令,但是主机过多,密码容易遗忘,这里通过ssh免密码设置来登录主机。
这里演示从主机免密登录到 192.168.1.6
1 设置hosts
将要登录的服务器的IP设置到hosts中,后续直接使用hostname。
$ sudo vi /etc/hosts
# 新增配置
192.168.1.6 local_6
# 重启网卡
$ sudo service network-manager restart
2 生成本机密钥对
ubuntu@ubuntu:~$ ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/avie/.ssh/id_rsa):
/home/avie/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/avie/.ssh/id_rsa.
Your public key has been saved in /home/avie/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:GrT0vmJHgKDWeAdqR3M4UIHHgll64ZeRmarf2CvD++M avie@ubuntu
The key's randomart image is:
+---[RSA 2048]----+
|.+Bo++ |
|o=.X++ |
|..XoB.o |
|.*.=.+.o |
|o.o . o.S |
|. +. |
| o + ... |
| * + o .. |
| .*E+ o. |
+----[SHA256]-----+
ubuntu@ubuntu:~$
此时会在/home/ubuntu/.ssh目录下生成密钥对
ubuntu@ubuntu:~$ ll .ssh
总用量 20
drwx------ 2 ubuntu ubuntu 4096 5月 17 11:22 ./
drwxr-xr-x 43 ubuntu ubuntu 4096 6月 2 14:15 ../
-rw------- 1 ubuntu ubuntu 1679 6月 2 14:32 id_rsa
-rw-r--r-- 1 ubuntu ubuntu 393 6月 2 14:32 id_rsa.pub
-rw-r--r-- 1 ubuntu ubuntu 1772 6月 2 14:16 known_hosts
ubuntu@ubuntu:~$
3 上传公钥到需要登录的服务器
ubuntu@ubuntu:~$ ssh-copy-id ubuntu@192.168.1.6
The authenticity of host '192.168.1.6 (192.168.1.6)' can't be established.
ECDSA key fingerprint is SHA256:2pzDbXEUlQx28SlyTmxWyhf75mQ1aevwN8kwhjjyuN8.
Are you sure you want to continue connecting (yes/no)? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
avie@192.168.1.6's password: Number of key(s) added: 1Now try logging into the machine, with: "ssh 'avie@192.168.1.6'"
and check to make sure that only the key(s) you wanted were added.
ubuntu@ubuntu:~$
此时本机的公钥文件内容会追加写入到192.168.1.6 ubuntu用户下的的 .ssh/authorized_keys 文件中
4 测试登录
ubuntu@ubuntu:~$ ssh ubuntu@local_6
Welcome to Ubuntu 18.04.5 LTS (GNU/Linux 5.4.0-73-generic x86_64)* Documentation: https://help.ubuntu.com* Management: https://landscape.canonical.com* Support: https://ubuntu.com/advantage* Canonical Livepatch is available for installation.- Reduce system reboots and improve kernel security. Activate at:https://ubuntu.com/livepatch17 updates can be applied immediately.
1 of these updates is a standard security update.
To see these additional updates run: apt list --upgradableNew release '20.04.2 LTS' available.
Run 'do-release-upgrade' to upgrade to it.Your Hardware Enablement Stack (HWE) is supported until April 2023.
Last login: Wed May 26 17:59:42 2021 from 192.168.1.64
ubuntu@ubuntu-HP-Z2-G4-Entry-Tower-Workstation:~$ ifconfig -a
...
显示已经登录到1.6主机。此时如果本机的账户,与1.6需要登录的账户都是ubuntu的话,命令可以缩减为ssh local_6
5 错误处理
如果在使用ssh-copy-id时出现出现Host key verfication failed错误,
ubuntu@ubuntu:~$ ssh-copy-id ubuntu@192.168.1.6
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/ubuntu/.ssh/id_rsa.pub"
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed/usr/bin/ssh-copy-id: ERROR: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
ERROR: @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
ERROR: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
ERROR: IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
ERROR: Someone could be eavesdropping on you right now (man-in-the-middle attack)!
ERROR: It is also possible that a host key has just been changed.
ERROR: The fingerprint for the ECDSA key sent by the remote host is
ERROR: SHA256:2pzDbXEUlQx28SlyTmxWyhf75mQ1aevwN8kwhjjyuN8.
ERROR: Please contact your system administrator.
ERROR: Add correct host key in /root/.ssh/known_hosts to get rid of this message.
ERROR: Offending ECDSA key in /root/.ssh/known_hosts:3
ERROR: remove with:
ERROR: ssh-keygen -f "/root/.ssh/known_hosts" -R "192.168.1.6"
ERROR: ECDSA host key for 192.168.1.6 has changed and you have requested strict checking.
ERROR: Host key verification failed.
ubuntu@ubuntu:~$
解决命令:ssh-keygen -R 目标IP地址 :
ubuntu@ubuntu:~$ ssh-keygen -R 192.168.1.6
# Host 192.168.1.6 found: line 3
/home/ubuntu/.ssh/known_hosts updated.
Original contents retained as /home/avie/.ssh/known_hosts.old
ubuntu@ubuntu:~$ sudo ssh-copy-id avie@192.168.1.6
而后重新执行ssh-copy-id
即可。
Ubuntu操作-02 设置SSH免密码相关推荐
- hadoop设置ssh免密码登录
对于需要远程管理其它机器,一般使用远程桌面或者telnet.linux一般只能是telnet.但是telnet的缺点是通信不加密,存在不安全因素,只适合内网访问.为 解决这个问题,推出了通信加密通信协 ...
- Linux设置ssh免密码登录
一.SSH来源 对于需要远程管理其它机器,一般使用远程桌面或者telnet.linux一般只能是telnet.但是telnet的缺点是通信不加密,存在不安全因素,只适合内网访问. 为解决这个问题,推出 ...
- ubuntu16.04设置ssh免密码登录
在node1节点远程登录node2节点 node1: sudo apt-get remove ssh sudo apt-get install ssh node2: sudo apt-get remo ...
- 设置SSH免密码自动登录(使用别名)
每次登录服务器都要写一大串的用户名(username@服务器地址)和登录密码十分的繁琐,所以本文就告诉大家如何通过修改配置文件,达到只需要输入:ssh jack(你起的别名)就可以一键登录到服务器中. ...
- centos7 设置ssh免密码登录配置方法
生产密钥: [root@localhost hadoop]# ssh-keygen -t dsa Generating public/private dsa key pair. Enter file ...
- ssh 免密码设置失败原因总结
先复习一下设置ssh免密码操作的步骤: 进入主目录 cd 生成公钥 ssh-keygen -t rsa -P '' (注:最后是二个单引号,表示不设置密码) 然后分发公钥到目标机器 ssh-copy- ...
- Hadoop集群搭建过程中ssh免密码登录(二)
一.为什么设置ssh免密码登录 在集群中,Hadoop控制脚本依赖SSH来执行针对整个集群的操作.例如,某个脚本能够终止并重启集群中的所有守护进程.所以,需要安装SSH,但是,SSH远程登陆的时候,需 ...
- 集群环境ssh免密码登录设置
集群环境ssh免密码登录设置 今天刚刚学习,总结一下 以免以后忘记 参考https://www.cnblogs.com/ivan0626/p/4144277.html https://www.cnbl ...
- ssh 免密码登录(设置后仍需输密码的原因及解决方法)
ssh 免密码登录(设置后仍需输密码的原因及解决方法) 参考文章: (1)ssh 免密码登录(设置后仍需输密码的原因及解决方法) (2)https://www.cnblogs.com/guanyf/p ...
最新文章
- mysql int(40)_MySQL Integer类型与INT(11)
- 框架学习之Spring 第五节 SSH整合开发[Spring2.5+Hibernate3.3+Struts2]
- 【git】几大区概念
- Python yield 用法
- c语言平滑raw图像(取平均值法)
- python requests返回值为200 但是text无内容_爬取高清无版权美图
- 与IO相关的等待事件troubleshooting-系列9
- SNF开发平台WinForm之五-高级查询使用说明-SNF快速开发平台3.3-Spring.Net.Framework
- 利用obfuscar对.NET应用进行混淆
- inner join on 加条件和where加条件_SQL学习笔记 - GROUP BY / JOIN / UNION
- 两届诺贝尔文学奖得主将同时公布
- 顺风车订单已结束仍在录音 嘀嗒出行回应录音机制
- (四)Locust no-web模式
- python窗口消息处理_在Python中将鼠标光标悬停在某些内容上时显示消息
- WCF热带鱼书学习手记 - ABC
- JAVA并发之多线程基础(3)
- 写给那些仍旧在公司混日子的人-周鸿祎
- A1113 | Integer Set Partition (25)
- excel高级筛选怎么用_Excel教程:用高级筛选做超级拆分器
- HALCON 3D 激光三角校准-未完持续