ssh
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
ssh [2011/07/21 15:10] – k2patel | ssh [2021/06/08 20:07] (current) – [Tips & Tricks] k2patel | ||
---|---|---|---|
Line 15: | Line 15: | ||
==== SCP Speed UP ==== | ==== SCP Speed UP ==== | ||
- | To increase speed on transfer you can force cipher to arcfour | + | To increase speed on transfer you can force cipher to arcfour.\\ |
- | < | + | You can use same mechanism with rsync when you use ssh encapsulation. \\ |
+ | < | ||
scp -c arcfour < | scp -c arcfour < | ||
</ | </ | ||
+ | |||
+ | <code bash> | ||
+ | rsync -av -e "ssh -c arcfour -l < | ||
+ | </ | ||
+ | |||
< | < | ||
<span style=" | <span style=" | ||
</ | </ | ||
+ | |||
+ | ==== SSH Tunnels ==== | ||
+ | |||
+ | === Forward Tunnel === | ||
+ | It is used when you want to forward local port to remote port over SSH. | ||
+ | <code bash> | ||
+ | ssh -f -N -L 5445: | ||
+ | </ | ||
+ | |||
+ | === Reverse Tunnel === | ||
+ | It is used when you want to forward Remote Port to Local Port.\\ | ||
+ | Usually used to allow access other way around. | ||
+ | |||
+ | <code bash> | ||
+ | ssh -f -N -R 5445: | ||
+ | </ | ||
+ | |||
+ | ==== SSH Agent automation ==== | ||
+ | |||
+ | Undefine existing value and define new value in session.\\ | ||
+ | This also keep the value same since nothing is changing. | ||
+ | |||
+ | <code bash | .screenrc> | ||
+ | unsetenv SSH_AUTH_SOCK | ||
+ | setenv SSH_AUTH_SOCK $HOME/ | ||
+ | </ | ||
+ | | ||
+ | Each call of screen command will overwrite the existing symlink. | ||
+ | |||
+ | <code bash | .bashrc> | ||
+ | _ssh_auth_save() { | ||
+ | ln -sf " | ||
+ | } | ||
+ | alias screen=' | ||
+ | </ | ||
+ | |||
+ | Now add key to your session with " | ||
+ | That should do it. | ||
+ | |||
+ | |||
+ | ==== Tips & Tricks ==== | ||
+ | |||
+ | == Show fingerprint of key == | ||
+ | <note important> | ||
+ | |||
+ | <code bash> | ||
+ | # Using -E can specify MD5 has which mostly require to compare | ||
+ | ssh-keygen -lf .ssh/ | ||
+ | </ | ||
+ | OR | ||
+ | <code bash> | ||
+ | ssh-keygen -l -F ip.k2patel.in | ||
+ | </ | ||
+ | |||
+ | It will print for all public key in single file if there is multiple key in it.\\ | ||
+ | Also, it is usefull in identifying MITM Attack by comparing against your known host.\\ | ||
+ | |||
+ | == Print fingerprint on login == | ||
+ | You can enabled printing of server key by setting following variable.\\ | ||
+ | <note tip>you can setup on any of following file / | ||
+ | <code bash> | ||
+ | VisualHostKey yes | ||
+ | </ | ||
+ | |||
+ | == Run Command from file Remotely == | ||
+ | Place all your command in xyz file. And run as follows | ||
+ | <code bash> | ||
+ | ssh -l k2patel nice.k2patel.in "`cat xzy`" | ||
+ | </ | ||
+ | |||
+ | == Comment on public key == | ||
+ | You can control comment on public key during generation using following command. | ||
+ | |||
+ | <code bash> | ||
+ | ssh-keygen -t rsa -C " | ||
+ | </ | ||
+ | |||
+ | == Temporarily disable ssh key forwarding == | ||
+ | This will disable key forwarding, while login with the key. | ||
+ | <code bash> | ||
+ | ssh yahoo.com -i .ssh/ | ||
+ | </ |
ssh.1311261031.txt.gz · Last modified: 2020/08/10 02:29 (external edit)