¸®´ª½º °ü·Ã °Ô½ÃÆÇ |
---|
2010/05/10(16:50) from 202.31.238.199 | |
ÀÛ¼ºÀÚ : °ÁÙ±â (a@b.c.d.e) | Á¶È¸¼ö : 7392 , ÁÙ¼ö : 83 |
RHEL 5.3¿¡¼ ssh ÄÄÆÄÀϹæ¹ý |
---|
1. ´Ù¿î·Îµå ½ÎÀÌÆ® http://www.openssh.com/portable.html ¸ÕÀú, openssl ¼Ò½ºÄÚµåºÎÅÍ ÄÄÆÄÀÏ&ÀνºÅçÇÑ´Ù. (¾Æ·¡À¥½ÎÀÌÆ®¿¡¼ ´Ù¿î·Îµå, ÄÄÆÄÀϹæ¹ý »ý·«) http://www.openssl.org/source/ 2. ÄÄÆÄÀÏ ¹× config (zlib-1.1.4 or higher required) [root@jjcafe ~]# gzip -dc openssh-5.5p1.tar.gz | tar xvf - [root@jjcafe ~]# configure --prefix=/usr/local/openssh --with-tcp-wrappers zlib-1.1.4 or higher required (zlib ¹öÀüÀÌ ³·À¸¸é configure ¿¡·¯°¡ ¹ß»ýÇÕ´Ï´Ù. ³ôÀº¹öÀüÀ¸·Î ¼³Ä¡¸¦ ÇÏ¼Å¾ß ÇÕ´Ï´Ù.) 3. ¼³Á¤ /var/empty µð·ºÅ丮¸¦ ¸¸µé°í ¼ÒÀ¯±Ç°ú Æ۹̼ÇÀ» Á¶Á¤ÇÑ´Ù. ÀÌ µð·ºÅ丮´Â ºñ¾î³õ½À´Ï´Ù. # mkdir /var/empty # chown root:sys /var/empty # chmod 755 /var/empty ssh À¯Àú¿Í ±×·ì »ý¼º ÇÏ°í.. Ȩ µð·ºÅ丮¸¦ /var/empty ·Î ¼³Á¤ÇÑ´Ù. (Linux ¸í·É¾î ±âÁØ) # groupadd sshd # useradd -g sshd -c 'sshd privsep' -d /var/empty -s /bin/false sshd 4. ½ÇÇà ¹× Å×½ºÆ® sshd ¼¹öµ¥¸óÀº Àý´ë°æ·Î¿¡¼ ½ÇÇàÀ» ÇÑ´Ù. # /usr/local/openssh/sbin/sshd [root@www /usr/local/openssh/bin] ls scp sftp slogin ssh ssh-add ssh-agent ssh-keygen ssh-keyscan [root@www /usr/local/openssh/bin] ./ssh -l jkkang localhost or [root@www /usr/local/openssh/bin] ./ssh jkkang@localhost [root@www /usr/local/openssh/bin] ./ssh localhost The authenticity of host 'localhost (127.0.0.1)' can't be established. RSA key fingerprint is 88:63:6d:a2:f0:73:49:f5:da:b3:81:b4:ca:39:08:32. Are you sure you want to continue connecting (yes/no)? y Please type 'yes' or 'no': yeo Please type 'yes' or 'no': yes Warning: Permanently added 'localhost' (RSA) to the list of known hosts. root@localhost's password: Last login: Mon Apr 7 19:25:15 2003 5. ¼³Á¤Çϱâ AllowGroups ssh ·Î±×ÀÎÀ» ÇØ´ç ±×·ìÀ¸·Î Á¦ÇÑÇÑ´Ù. °¢°¢ÀÇ ±×·ì¸íÀº °ø¹éÀ¸·Î ±¸ºÐÇÑ´Ù. ¿ÍÀϵå Ä«µå(* ¿Í ?)¸¦ »ç¿ëÇÒ¼ö ÀÖ´Ù. AllowUsers ssh ·Î±×ÀÎÀ» ÇØ´ç À¯Àú·Î Á¦ÇÑÇÑ´Ù. »ç¿ë¹ýÀº AllowGroups°ú °°´Ù. DenyGroups AllowGroupsÀÇ ¹Ý´ë ¿ªÇÒÀ» ÇÑ´Ù. ÁöÁ¤µÈ ±×·ìÀº ·Î±×ÀÎÀÌ °ÅºÎµÈ´Ù. DenyUsers AllowUsersÀÇ ¹Ý´ë ¿ªÇÒÀ» ÇÑ´Ù. ÁöÁ¤µÈ »ç¿ëÀÚ´Â ·Î±×ÀÎÀÌ °ÅºÎµÈ´Ù. ÀÌ¿Ü »ç¿ëÀÚµéÀÇ sftp »ç¿ëÀ» Çã¿ëÇÏ·Á¸é ´ÙÀ½°ú °°Àº ¶óÀÎÀÌ ÀÖ´ÂÁö È®ÀÎÇÑ´Ù. -------------------------------------------------------------------------------- Powered by Kang Jul Ki |