🥇Ajiye maɓallan SSH lafiya

Ina so in gaya muku yadda ake adana maɓallan SSH a cikin na'ura ta gida, ba tare da tsoron cewa wasu aikace-aikacen na iya sata ko ɓoye su ba.

Labarin zai zama da amfani ga waɗanda ba su sami wani m bayani bayan m a cikin 2018 kuma yana ci gaba da adana makullin ciki $HOME/.ssh.

Don magance wannan matsalar, Ina ba da shawarar amfani da su KeePassXC, wanda shine ɗayan mafi kyawun manajan kalmar sirri, yana amfani da algorithms mai ƙarfi na ɓoyewa kuma yana da ginanniyar wakili na SSH.

Wannan yana ba da damar adana duk maɓallai kai tsaye a cikin ma'ajin kalmar sirri da kuma ƙara su ta atomatik a cikin tsarin idan an buɗe shi. Da zaran an rufe ma'ajin bayanai, amfani da maɓallan SSH shima zai zama ba zai yiwu ba.

Da farko, bari mu ƙara autostart na wakilin SSH lokacin shiga; don yin wannan, buɗe ~/.bashrc a cikin editan da kuka fi so kuma ƙara a ƙarshe:

SSH_ENV="$HOME/.ssh/environment"

function start_agent {
    echo "Initialising new SSH agent..."
    /usr/bin/ssh-agent | sed 's/^echo/#echo/' > "${SSH_ENV}"
    echo succeeded
    chmod 600 "${SSH_ENV}"
    . "${SSH_ENV}" > /dev/null
}

# Source SSH settings, if applicable
if [ -f "${SSH_ENV}" ]; then
    . "${SSH_ENV}" > /dev/null
    #ps ${SSH_AGENT_PID} doesn't work under cywgin
    ps -ef | grep ${SSH_AGENT_PID} | grep ssh-agent$ > /dev/null || {
        start_agent;
    }
else
    start_agent;
fi

Bayan haka muna buƙatar kunna tallafi a cikin KeePassXC:

Kayan aiki -> sigogi -> Wakilin SSH -> Kunna Wakilin SSH

Wannan ya kammala saitin, yanzu bari mu gwada ƙara sabon maɓallin SSH zuwa KeePassXC:

Danna gunkin tare da maɓalli, sannan cika bayanan:

Idan maɓalli yana kiyaye kalmar sirri, da fatan za a saka mashi kalmar sirri

A cikin shafin .Arin upload da abin da aka makala tare da mu id_rsa:

A cikin shafin Wakilin SSH, lura:

Ƙara maɓalli ga wakili lokacin buɗewa/buɗe bayanan bayanai
Cire maɓallin daga wakili lokacin rufewa/kulle bayanan

Na gaba, zaɓi maɓallin mu (id_rsa) a cikin abin da aka makala

Kuma danna maɓallin Ƙara zuwa wakili:

Yanzu, lokacin da kuka ƙaddamar da KeePassXC, maɓallin za a ƙara ta atomatik zuwa wakilin SSH, don haka ba za ku ƙara adana shi akan faifai ba!

source: www.habr.com

Ajiye maɓallan SSH amintacce

Add a comment Отменить ответ