Mu tabi Muu Wiwọle Wọle SSH ati Idinwo Wiwọle SSH ni Lainos

Loni, gbogbo eniyan mọ pe awọn eto Linux wa pẹlu iraye si olumulo olumulo ati nipasẹ aiyipada a ti muu iraye si root fun agbaye ita. Fun idi aabo kii ṣe imọran ti o dara lati jẹ ki iraye wiwọle ssh ṣiṣẹ fun awọn olumulo laigba aṣẹ. Nitori eyikeyi agbonaeburuwole le gbiyanju lati ṣapa ọrọ igbaniwọle rẹ ki o ni iraye si eto rẹ.

Nitorinaa, o dara julọ lati ni akọọlẹ miiran ti o lo nigbagbogbo ati lẹhinna yipada si olumulo olumulo nipasẹ lilo ‘su -‘ pipaṣẹ nigbati o jẹ dandan. Ṣaaju ki a to bẹrẹ, rii daju pe o ni iroyin olumulo deede ati pẹlu pe o su tabi sudo lati ni iraye si root.

Ni Lainos, o rọrun pupọ lati ṣẹda akọọlẹ ọtọ, buwolu wọle bi olumulo olumulo ati ṣiṣe ni aṣẹ ‘adduser’ lati ṣẹda olumulo lọtọ. Lọgan ti a ṣẹda olumulo, kan tẹle awọn igbesẹ isalẹ lati mu wiwọle root kuro nipasẹ SSH.

A lo faili iṣeto oluwa sshd lati mu iwọle root wọle ati eyi yoo le dinku ati ṣe idiwọ agbonaeburuwole lati ni iraye si root si apoti Linux rẹ. A tun rii bii a ṣe le mu iraye si gbongbo tun bii bii a ṣe le fi opin si iraye si ssh da lori atokọ awọn olumulo.

Mu Wiwọle Gbongbo SSH ṣiṣẹ

Lati mu wiwọle wiwọle gbongbo, ṣii faili iṣeto ssh akọkọ/abbl/ssh/sshd_config pẹlu yiyan olootu rẹ.

# vi /etc/ssh/sshd_config

Wa fun laini atẹle ninu faili naa.

#PermitRootLogin no

Yọ ‘#’ kuro ni ibẹrẹ laini naa. Jẹ ki ila naa dabi iru eyi.

PermitRootLogin no

Nigbamii ti, a nilo lati tun bẹrẹ iṣẹ daemon SSH.

# /etc/init.d/sshd restart

Bayi gbiyanju lati buwolu wọle pẹlu olumulo gbongbo, iwọ yoo gba aṣiṣe “Wiwọle Ti a Kọ”.

login as: root
Access denied
[email 's password:

Nitorinaa, lati isisiyi lọ buwolu wọle bi olumulo deede ati lẹhinna lo aṣẹ 'su' lati yipada si olumulo gbongbo.

login as: tecmint
Access denied
[email 's password:
Last login: Tue Oct 16 17:37:56 2012 from 172.16.25.125
[[email  ~]$ su -
Password:

Jeki Wiwọle Gbongbo SSH

Lati jẹki gedu root ssh, ṣii faili/ati be be lo/ssh/sshd_config.

# vi /etc/ssh/sshd_config

Wa laini atẹle ki o fi ‘#’ ni ibẹrẹ ki o fi faili naa pamọ.

# PermitRootLogin no

Tun iṣẹ sshd bẹrẹ.

# /etc/init.d/sshd restart

Bayi gbiyanju lati buwolu wọle pẹlu olumulo root.

login as: root
Access denied
[email 's password:
Last login: Tue Nov 20 16:51:41 2012 from 172.16.25.125

Iye awọn Wiwọle Olumulo SSH

Ti o ba ni nọmba nla ti awọn iroyin olumulo lori awọn eto, lẹhinna o jẹ oye pe a ṣe opin iraye si ọna jijin si awọn olumulo wọnyẹn ti o nilo rẹ gaan. Ṣii faili/ati be be/ssh/sshd_config.

# vi /etc/ssh/sshd_config

Ṣafikun laini awọn AllowUsers ni isalẹ faili naa pẹlu aaye ti o yapa nipasẹ atokọ awọn orukọ olumulo. Fun apẹẹrẹ, olumulo tecmint ati sheena mejeeji ni iraye si ssh latọna jijin.

AllowUsers tecmint sheena

Bayi tun bẹrẹ iṣẹ ssh.