Difference between revisions of "Ssh (OpenSSH client)"
Jump to navigation
Jump to search
↑ http://man7.org/linux/man-pages/man1/ssh.1.html
↑ https://serverfault.com/a/132973
↑ https://stackoverflow.com/a/48330113
(89 intermediate revisions by 5 users not shown) | |||
Line 1: | Line 1: | ||
− | <code>ssh</code><ref>http://man7.org/linux/man-pages/man1/ssh.1.html</ref> is the [[OpenSSH]] | + | {{lowercase}} |
+ | <code>ssh</code><ref>http://man7.org/linux/man-pages/man1/ssh.1.html</ref> is the [[OpenSSH]] [[ssh clients|ssh client]] for logging or executing commands into remote devices/machines | ||
+ | * Man page: https://linux.die.net/man/1/ssh | ||
+ | * <code>[[ssh --help]]</code> | ||
+ | |||
+ | ssh [-46AaCfGgKkMNnqsTtVvXxYy] [-B bind_interface] [-b bind_address] [-c cipher_spec] [-D [bind_address:]port] | ||
+ | [-E log_file] [-e escape_char] [-F configfile] [-I pkcs11] [-i identity_file] [-J destination] [-L address] | ||
+ | [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port] [-Q query_option] [-R address] [-S ctl_path] | ||
+ | [-W host:port] [-w local_tun[:remote_tun]] destination [command] | ||
+ | |||
+ | * <code>-X Enables X11 [[forwarding]]</code> | ||
+ | * <code>-N Do not execute a [[remote command]]. This is usefull for just [[forwarding]] ports</code> | ||
+ | * <code>[[ssh -vvv]]</code> | ||
+ | * <code>[[ssh -V]]</code> | ||
+ | * <code>[[ssh -t]]</code> | ||
+ | * <code>[[ssh -O]]</code> | ||
+ | * <code>ssh -o ConnectTimeout=100</code> | ||
+ | * <code>[[ssh -i]]</code> | ||
+ | * <code>[[ssh -L]]</code> | ||
+ | * <code>[[ssh -R]]</code> | ||
+ | |||
+ | Windows: Settings > Apps and click “Manage optional features” under Apps & features. | ||
+ | |||
+ | == Configuration == | ||
+ | * Configuration file: <code>[[~/.ssh/config]]</code> | ||
+ | * <code>[[~/.ssh/environment]]</code> | ||
+ | |||
+ | == Usage == | ||
+ | * <code>[[ssh]] remote_User@server_Name_Or_IP</code> | ||
+ | * <code>ssh [email protected] -p 1111 [[-i]] ./yourprivkey</code> | ||
+ | * <code>[[ssh -vvv]] REMOTE_USERNAME@REMOTE_SERVER_NAME_OR_IP</code> (<code>-v</code> increase verbosity, maximum 3) | ||
+ | ** <code>[[ssh]] -vvv REMOTE_USERNAME@REMOTE_SERVER_NAME_OR_IP 2>&1 | grep "STRING_TO_SEARCH" </code> | ||
+ | Execute a remote command: | ||
+ | * <code>ssh USERNAME@SERVER_NAME '/path/to/remote/scripts/backup.[[sh]]'</code> | ||
+ | |||
+ | * <code>[[ssh -Q]] kex SERVER</code> | ||
+ | |||
+ | == Example commands == | ||
+ | * <code>ssh -o [[StrictHostKeyChecking]]=accept-new [email protected]</code> (since [[OpenSSH 7.5]], March 2017) | ||
+ | * <code>ssh -o StrictHostKeyChecking=no [email protected]</code><ref>https://serverfault.com/a/132973</ref> | ||
+ | * <code>ssh -Q [[kex]] SERVER</code> | ||
+ | * <code>ssh -o [[MACs]]=[[hmac-sha2-256]] HOSTNAME</code> | ||
+ | |||
+ | == [[Multiplexing]] options == | ||
+ | [[ssh -O]] check server.example.org or ssh -O check [email protected] | ||
+ | Master running (pid=26289) | ||
+ | |||
+ | ssh -O check [email protected] | ||
+ | Control socket connect(/path/): No such file or directory | ||
+ | |||
+ | To stop an specific multiplexed session: | ||
+ | :<code>[[ssh -O stop]] [email protected]</code> | ||
+ | |||
+ | Avoid using Multiplexing for a connections: | ||
+ | :<code>ssh -o "ControlMaster=no" server.example.org</code> | ||
+ | |||
+ | |||
+ | See also: [[Configure OpenSSH to reuse ssh connections]] | ||
+ | |||
+ | == Logs == | ||
+ | [[ssh -i]] id_ed25519_xxxxx.pub SERVER_NAME | ||
+ | Load key "id_ed25519_xxxxx.pub": invalid format | ||
+ | Solution: | ||
+ | Use private key instead of public key <ref>https://stackoverflow.com/a/48330113</ref> | ||
+ | ssh -i id_ed25519_xxxxx SERVER_NAME | ||
+ | |||
+ | * <code>[[Unable to negotiate with]] ([[KexAlgorithms]])</code> | ||
+ | |||
+ | == Activities == | ||
+ | * Understand differences between stop and exit: <code>ssh -O exit [email protected]</code> | ||
+ | * [[Configure OpenSSH to reuse ssh connections]] | ||
+ | * [[Execute a command in parallel by ssh]] | ||
+ | * <code>[[ssh]] -o [[PreferredAuthentications]]=keyboard-interactive -o [[PubkeyAuthentication]]=no host1.example.org</code> | ||
+ | * [[Reverse SSH tunneling]] | ||
+ | |||
+ | == Configuration == | ||
+ | * <code>[[CheckHostIP]]</code> | ||
+ | |||
+ | == Related == | ||
+ | * <code>[[gcloud compute ssh]]</code> | ||
+ | * [[Load key ... invalid format]] | ||
+ | |||
+ | == See also == | ||
+ | * {{ssh (openSSH)}} | ||
+ | * {{ssh clients}} | ||
+ | |||
+ | [[Category:Networking]] | ||
+ | [[Category:Linux]] |
Latest revision as of 13:54, 14 July 2023
ssh
[1] is the OpenSSH ssh client for logging or executing commands into remote devices/machines
- Man page: https://linux.die.net/man/1/ssh
ssh --help
ssh [-46AaCfGgKkMNnqsTtVvXxYy] [-B bind_interface] [-b bind_address] [-c cipher_spec] [-D [bind_address:]port] [-E log_file] [-e escape_char] [-F configfile] [-I pkcs11] [-i identity_file] [-J destination] [-L address] [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port] [-Q query_option] [-R address] [-S ctl_path] [-W host:port] [-w local_tun[:remote_tun]] destination [command]
-X Enables X11 forwarding
-N Do not execute a remote command. This is usefull for just forwarding ports
ssh -vvv
ssh -V
ssh -t
ssh -O
ssh -o ConnectTimeout=100
ssh -i
ssh -L
ssh -R
Windows: Settings > Apps and click “Manage optional features” under Apps & features.
Contents
Configuration[edit]
- Configuration file:
~/.ssh/config
~/.ssh/environment
Usage[edit]
ssh remote_User@server_Name_Or_IP
ssh [email protected] -p 1111 -i ./yourprivkey
ssh -vvv REMOTE_USERNAME@REMOTE_SERVER_NAME_OR_IP
(-v
increase verbosity, maximum 3)ssh -vvv REMOTE_USERNAME@REMOTE_SERVER_NAME_OR_IP 2>&1 | grep "STRING_TO_SEARCH"
Execute a remote command:
ssh USERNAME@SERVER_NAME '/path/to/remote/scripts/backup.sh'
ssh -Q kex SERVER
Example commands[edit]
ssh -o StrictHostKeyChecking=accept-new [email protected]
(since OpenSSH 7.5, March 2017)ssh -o StrictHostKeyChecking=no [email protected]
[2]ssh -Q kex SERVER
ssh -o MACs=hmac-sha2-256 HOSTNAME
Multiplexing options[edit]
ssh -O check server.example.org or ssh -O check [email protected] Master running (pid=26289)
ssh -O check [email protected] Control socket connect(/path/): No such file or directory
To stop an specific multiplexed session:
Avoid using Multiplexing for a connections:
ssh -o "ControlMaster=no" server.example.org
See also: Configure OpenSSH to reuse ssh connections
Logs[edit]
ssh -i id_ed25519_xxxxx.pub SERVER_NAME Load key "id_ed25519_xxxxx.pub": invalid format Solution: Use private key instead of public key [3] ssh -i id_ed25519_xxxxx SERVER_NAME
Activities[edit]
- Understand differences between stop and exit:
ssh -O exit [email protected]
- Configure OpenSSH to reuse ssh connections
- Execute a command in parallel by ssh
ssh -o PreferredAuthentications=keyboard-interactive -o PubkeyAuthentication=no host1.example.org
- Reverse SSH tunneling
Configuration[edit]
Related[edit]
See also[edit]
- OpenSSH:
ssh
,ssh -O
,-i, -t
,-T, -N, -V
,/etc/ssh/ssh_config
,ssh --help
- SSH clients:
ssh (OpenSSH)
,putty
, MobaXterm,plink
,mosh
,paramiko
,conch
pssh
,sshpass
andautossh
,sftp, Termius
Advertising: