ProHoster > Блог > Whakahaerenga > Te hono ki Windows ma te SSH penei i a Linux

Te hono ki Windows ma te SSH penei i a Linux

I nga wa katoa ka pouri ahau i te hono atu ki nga miihini Windows. Kao, ehara ahau i te hoariri, i te kaitautoko ranei o Microsoft me a raatau hua. Kei ia hua mo tana ake kaupapa, engari ehara tena i te mea.
He tino mamae ki ahau te hono atu ki nga tūmau Windows, na te mea ka whirihorahia enei hononga ma te waahi kotahi (kia ora WinRM me HTTPS) karekau ranei e tino mahi ana (kia ora RDP ki nga miihini mariko o tawahi).

Na reira, kua tupono noa ki te kaupapa Win32-OpenSSH, I whakatau ahau ki te tiri i taku wheako tatūnga. Ma tenei taputapu e whakaora te tangata i te maha o nga uaua.

Te hono ki Windows ma te SSH penei i a Linux

Kōwhiringa Tāuta:

  1. Ma te ringa
  2. Na roto i te пакет Kawhetarete
  3. Via Ansible, hei tauira te mahi jborean93.win_openssh

I muri mai, ka korero ahau mo te waahi tuatahi, i te mea he nui ake, he iti ake ranei nga mea katoa me era atu.

E hiahia ana ahau ki te mohio kei te waahi tonu tenei kaupapa i te waahi beta, na reira kaore i te tūtohutia kia whakamahia i roto i te mahi.

Na, tango i te tukunga hou, i tenei wa 7.9.0.0p1-beta. He putanga mo nga punaha moka 32 me te 64.

Wewetehia ki roto C:Program FilesOpenSSH
He waahi whakahau mo te mahi tika: ko te Tuhinga me te roopu whakahaere.

Tāuta ratonga mā te whakamahi i te hōtuhi tāuta-sshd.ps1 kei roto i tenei whaiaronga

powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1

Whakaaetia nga hononga taumai ki te tauranga 22:

New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22

Whakamaramatanga: applet New-NetFirewallRule whakamahia i runga i te Windows Server 2012 me muri mai. I roto i nga punaha tawhito (papamahi ranei) ka taea e koe te whakamahi i te whakahau:

netsh advfirewall firewall add rule name=sshd dir=in action=allow protocol=TCP localport=22

Me timata te mahi:

net start sshd

I te tiimatanga, ka hangaia aunoa nga taviri manaaki (mehemea ka ngaro) ki roto %programdata%ssh

Ka taea e taatau te tiimata aunoa o te ratonga ka tiimata te punaha me te whakahau:

Set-Service sshd -StartupType Automatic

Ka taea hoki e koe te huri i te anga whakahau taunoa (i muri i te whakaurunga, ko te taunoa cmd):

New-ItemProperty -Path "HKLM:SOFTWAREOpenSSH" -Name DefaultShell -Value "C:WindowsSystem32WindowsPowerShellv1.0powershell.exe" -PropertyType String -Force

Whakamaramatanga: Me tohu e koe he ara tino.

He aha te i muri?

Na ka whakaturia e matou sshd_config, ka tuuhia e matou C: Raraunga Papatono. Hei tauira:

PasswordAuthentication no
PubkeyAuthentication yes

A ka hanga he whaiaronga i roto i te kōpaki kaiwhakamahi .ssh, me te konae kei roto kī_whakamana. Ka tuhia e matou nga taviri a te iwi ki reira.

He whakamaarama nui: ko te kaiwhakamahi anake kei roto i tona raarangi te konae kei roto te mana ki te tuhi ki tenei konae.

Engari ki te raru koe ki tenei, ka taea e koe te whakaweto i nga mana tirotiro i te whirihora:

StrictModes no

Ma te ara, i roto C:Program FilesOpenSSH e rua nga tuhinga (FixHostFilePermissions.ps1, WhakatikaUserFilePermissions.ps1), e tika ana engari kaua e herea ki te whakatika motika, tae atu ki kī_whakamana, engari mo etahi take kaore ratou e rehita.

Kaua e wareware ki te whakaara ano i te ratonga sshd i muri ki te tono i nga huringa.

ru-mbp-666:infrastructure$ ssh [email protected] -i ~/.ssh/id_rsa
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.

PS C:UsersAdministrator> Get-Host


Name             : ConsoleHost
Version          : 5.1.14393.2791
InstanceId       : 653210bd-6f58-445e-80a0-66f66666f6f6
UI               : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture   : en-US
CurrentUICulture : en-US
PrivateData      : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
DebuggerEnabled  : True
IsRunspacePushed : False
Runspace         : System.Management.Automation.Runspaces.LocalRunspace

PS C:UsersAdministrator>

Kaupapa pai/kino.

Kaupapa:

  • Te huarahi paerewa mo te hono atu ki nga tūmau.
    Mena he iti noa nga miihini Windows, he tino whakaraerae ina:
    Na, ka haere matou ma te ssh, ka whakamahia e matou te rdp,
    a, i te nuinga o te waa, ko te mahi tino pai me nga bastion ko te tuatahi he kauhanga ssh, me te RDP i roto.
  • Te ngawari o te tatūnga
    Ki taku whakaaro he maamaa tenei.
  • Te tere o te hononga me te mahi me te miihini mamao
    Karekau he anga kauwhata, e tiaki ana i nga rauemi tūmau me te nui o nga raraunga tuku.

Cons:

  • Kaore e tino whakakapi i te RDP.
    Kaore e taea nga mea katoa mai i te papatohu, aue. Ko taku tikanga ko nga ahuatanga e hiahiatia ana he GUI.

Nga rauemi i whakamahia i roto i te tuhinga:
Hononga ki te kaupapa ake
Ko nga whiringa whakaurunga he mea whakama te kape mai docs ansible.

Source: will.com

Tāpiri i te kōrero