openssh

openssh

免密码登录

创建一个秘钥对,本机留私钥
通过ssh-copy-id 将公钥拷贝到对端,过程将id_dsa.pub 改名authorized_keys 修改权限600

命令 参数 注释
ssh -T 测试ssh 链接
-t 允许在远程主机执行sudo 命令 ssh -p 22 -t root@192.168.0.130 sudo /bin/cp /host /etc
-p 指定端口 ssh -p22 root@192.168.0.130
ssh-keygen -t dsa 指定算法ssh-keygen -t rsa
-c 注释信息ssh-keygen -C "1209233066@qq.com"
-b 指定密钥长度ssh-keygen -b 2048
-N 指定使用文件是的密钥ssh-keygen -N ""
-f 指定文件ssh-keygen -t rsa -b 2048 -C "1209233066@qq.com" -N "" -f /root/.ssh/id_rsa
ssh-copy-id -i 指定公钥 ssh-copy-id -i ~/.ssh/id_dsa.pub 168.204.37.22
slogin
scp -P scp -P22 -rp /etc/hosts root@192.168.0.130:/etc/hosts
sftp -o sftp -oPort=22 root@127.0.0.1
rslogin
rsync

rsync守护进程模式

服务端

#!/bin/bash

useradd -M -s /bin/nologin rsync
mkdir /backup
chown -R rsync.rsync /backup/


cat >>/etc/rsyncd.conf<<EOF
uid = rsync 
gid = rsync
max connections = 200 
timeout = 300
pid file = /var/run/rsyncd.pid
lock file = /var/run/rsync.lock
log file = /var/log/rsyncd.log
ignore errors
read only = false
list = false
auth users= rsync_backup
secrets file = /etc/rsync.password

[backup]
path = /backup
host allow = 10.4.7.1/24
host deny = 0.0.0.0/32

EOF

echo "rsync_backup:123" >/etc/rsync.password
chmod 600 /etc/rsync.password

rsync --daemon
if [ `ss -lntp|grep rsync|wc -l` -eq 2 ];then
	echo [ok]
else
	echo [fails]
fi

客户端

echo "123" >/etc/rsync.password
chmod 600 /etc/rsync.password

rsync -avz ./ rsync://rsync_backup@10.4.7.250/backup --password-file=/etc/rsync.password 
rsync -avz --del /tmp/ rsync://rsync_backup@10.4.7.250/backup --password-file=/etc/rsync.password
posted @ 2022-05-12 08:42  mingtian是吧  阅读(153)  评论(0)    收藏  举报