ProHoster > Blog > Pulega > Feso'ota'i ile Windows ile SSH pei ole Linux

Feso'ota'i ile Windows ile SSH pei ole Linux

Ou te le fiafia i taimi uma i le fesoʻotaʻi i masini Windows. Leai, e le o aʻu o se tagata tetee pe o se lagolago o Microsoft ma a latou oloa. O oloa ta'itasi e iai mo lona lava fa'amoemoe, ae e le'o le uiga lea.
E masani lava ona tiga tele mo aʻu le faʻafesoʻotaʻi i Windows servers, aua o nei fesoʻotaʻiga e faʻapipiʻiina i se nofoaga e tasi (hello WinRM with HTTPS) pe le galue malosi (hello RDP i masini komepiuta i fafo).

O le mea lea, o le faʻafuaseʻi ona oʻo i le poloketi Win32-OpenSSH, Sa ou filifili e faasoa atu lo'u aafiaga i le seti. Masalo o lenei meafaigaluega o le a faʻaolaina ai se tasi i le tele o neura.

Feso'ota'i ile Windows ile SSH pei ole Linux

Filifiliga fa'apipi'i:

  1. Ma le lima
  2. E ala i le le afifi Chocolatey
  3. Via Ansible, mo se faataitaiga matafaioi jborean93.win_openssh

O le isi, o le a ou talanoa e uiga i le manatu muamua, talu ai o mea uma e sili atu pe itiiti foi le manino ma isi.

Ou te fia maitauina o lenei poloketi o loʻo i ai pea i le beta stage, o lea e le fautuaina ai le faʻaaogaina i le gaosiga.

O lea la, download le faʻasalalauga lata mai, i le taimi nei 7.9.0.0p1-beta. E iai fa'asologa mo 32 ma 64 bit faiga.

Tatala i totonu C: Polokalama FilesOpenSSH
O se tulaga fa'atulafonoina mo le fa'agaioiga sa'o: na'o le FUAFUAGA ma le vaega pule.

Fa'apipi'i 'au'aunaga e fa'aaoga ai se tusitusiga install-sshd.ps1 o lo'o i totonu o lenei fa'atonuga

powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1

Fa'ataga feso'ota'iga o'o mai i luga o le taulaga 22:

New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22

Fa'amalamalamaga: applet New-NetFirewallRule fa'aoga ile Windows Server 2012 ma mulimuli ane. I totonu o faiga tuai (poʻo le komepiuta) e mafai ona e faʻaogaina le poloaiga:

netsh advfirewall firewall add rule name=sshd dir=in action=allow protocol=TCP localport=22

Tatou amata le auaunaga:

net start sshd

I le amataga, o ki talimalo o le a otometi lava ona gaosia (pe a misi) i totonu %programdata%ssh

E mafai ona matou faʻatagaina le autostart o le tautua pe a amata le polokalama i le poloaiga:

Set-Service sshd -StartupType Automatic

E mafai foʻi ona e suia le atigi faʻatonuga (pe a uma ona faʻapipiʻi, o le faaletonu o le cmd):

New-ItemProperty -Path "HKLM:SOFTWAREOpenSSH" -Name DefaultShell -Value "C:WindowsSystem32WindowsPowerShellv1.0powershell.exe" -PropertyType String -Force

Fa'amanino: E tatau ona e fa'ama'oti se ala fa'ato'atoa.

o sosoo ai le a?

Ona matou setiina lea sshd_config, lea o le a tatou tuu i totonu C: Fa'amaumauga o Polokalama. Mo se faʻataʻitaʻiga:

PasswordAuthentication no
PubkeyAuthentication yes

Ma fatuina se lisi i totonu o le faila o tagata .ssh, ma i totonu o le faila ua faamaonia_keys. Matou te tusia i lalo ki lautele iina.

Fa'amalamalamaga taua: na'o le tagata fa'aoga o lo'o iai le faila e tatau ona iai le aia tatau e tusi ai i lenei faila.

Ae afai ei ai ni ou faʻafitauli i lenei mea, e mafai lava ona e tapeina le siakiina o aia tatau i le config:

StrictModes no

I le ala, i C: Polokalama FilesOpenSSH e 2 tusitusiga (FixHostFilePermissions.ps1, FixUserFilePermissions.ps1), lea e tatau ae le tatau ona faʻasaʻo aia tatau, e aofia ai ma ua faamaonia_keys, ae mo nisi mafuaaga latou te le resitalaina.

Aua nei galo e toe amata le auaunaga ssh ina ua uma ona faaaoga suiga.

ru-mbp-666:infrastructure$ ssh [email protected] -i ~/.ssh/id_rsa
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.

PS C:UsersAdministrator> Get-Host


Name             : ConsoleHost
Version          : 5.1.14393.2791
InstanceId       : 653210bd-6f58-445e-80a0-66f66666f6f6
UI               : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture   : en-US
CurrentUICulture : en-US
PrivateData      : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
DebuggerEnabled  : True
IsRunspacePushed : False
Runspace         : System.Management.Automation.Runspaces.LocalRunspace

PS C:UsersAdministrator>

Tulaga lelei/leaga.

Pros:

  • Tulaga masani e fa'afeso'ota'i i 'au'aunaga.
    Afai e toalaiti masini Windows, e matua faigata lava pe a:
    O lea la, matou te alu i luga o le ssh, ma o iinei matou te faʻaogaina ai le rdp,
    ma i se tulaga lautele, o le faʻataʻitaʻiga sili ona lelei ma bastions muamua o se ssh tunnel, ma RDP i totonu.
  • Faigofie ona seti
    Ou te manatu ua manino lenei mea.
  • Saosaoa o fesoʻotaʻiga ma galue ma se masini mamao
    E leai se atigi graphical, faʻasaoina uma punaoa a le server ma le aofaʻi o faʻamatalaga faʻasalalau.

Cons:

  • E le suia atoa le RDP.
    E le mafai ona faia mea uma mai le faʻamafanafanaga, talofa. O lona uiga o tulaga e manaʻomia ai se GUI.

Mea fa'aoga i le tusiga:
So'oga i le poloketi lava ia
O filifiliga fa'apipi'i e kopiina ma le le mā Fa'atonu docs.

puna: www.habr.com

Faaopoopo i ai se faamatalaga