系統環境:AIX 6100-09(SP3)
預設AIX系統不安裝ssh,需要另外自定義安裝,ssh有兩個軟體包組成(openssl 和 openssh),這兩個軟體包解壓後,通過smit就可以安裝。
一、安裝ssh
[root@aix209 ssh]#ls
OpenSSH_5.8.0.6102.tar.Z openssl-0.9.8.1802.tar.Z
ssh.txt
[root@aix209 ssh]#uncompress OpenSSH_5.8.0.6102.tar.
1)解壓
[root@aix209 ssh]#uncompress openssl-0.9.8.1802.tar.Z
OpenSSH_5.8.0.6102.tar
openssl-0.9.8.1802.tar
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
<code>[root</code><code>@aix209</code> <code>ssh]#tar xvf OpenSSH_5.</code><code>8.0</code><code>.</code><code>6102</code><code>.tar</code>
<code>x openssh.base, </code><code>6310912</code> <code>bytes, </code><code>12326</code> <code>tape blocks</code>
<code>x openssh.license, </code><code>338944</code> <code>bytes, </code><code>662</code> <code>tape blocks</code>
<code>x openssh.man.en_US, </code><code>153600</code> <code>bytes, </code><code>300</code> <code>tape blocks</code>
<code>x openssh.msg.CA_ES, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.CS_CZ, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.DE_DE, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.EN_US, </code><code>17408</code> <code>bytes, </code><code>34</code> <code>tape blocks</code>
<code>x openssh.msg.ES_ES, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.FR_FR, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.HU_HU, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>x openssh.msg.IT_IT, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.JA_JP, </code><code>24576</code> <code>bytes, </code><code>48</code> <code>tape blocks</code>
<code>x openssh.msg.Ja_JP, </code><code>26624</code> <code>bytes, </code><code>52</code> <code>tape blocks</code>
<code>x openssh.msg.KO_KR, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>x openssh.msg.PL_PL, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.PT_BR, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.RU_RU, </code><code>25600</code> <code>bytes, </code><code>50</code> <code>tape blocks</code>
<code>x openssh.msg.SK_SK, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.ZH_CN, </code><code>25600</code> <code>bytes, </code><code>50</code> <code>tape blocks</code>
<code>x openssh.msg.ZH_TW, </code><code>24576</code> <code>bytes, </code><code>48</code> <code>tape blocks</code>
<code>x openssh.msg.Zh_CN, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>x openssh.msg.Zh_TW, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>x openssh.msg.ca_ES, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.cs_CZ, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.de_DE, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.en_US, </code><code>17408</code> <code>bytes, </code><code>34</code> <code>tape blocks</code>
<code>x openssh.msg.es_ES, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.fr_FR, </code><code>20480</code> <code>bytes, </code><code>40</code> <code>tape blocks</code>
<code>x openssh.msg.hu_HU, </code><code>27648</code> <code>bytes, </code><code>54</code> <code>tape blocks</code>
<code>x openssh.msg.it_IT, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.ja_JP, </code><code>26624</code> <code>bytes, </code><code>52</code> <code>tape blocks</code>
<code>x openssh.msg.ko_KR, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.pl_PL, </code><code>27648</code> <code>bytes, </code><code>54</code> <code>tape blocks</code>
<code>x openssh.msg.pt_BR, </code><code>18432</code> <code>bytes, </code><code>36</code> <code>tape blocks</code>
<code>x openssh.msg.ru_RU, </code><code>27648</code> <code>bytes, </code><code>54</code> <code>tape blocks</code>
<code>x openssh.msg.sk_SK, </code><code>19456</code> <code>bytes, </code><code>38</code> <code>tape blocks</code>
<code>x openssh.msg.zh_CN, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>x openssh.msg.zh_TW, </code><code>21504</code> <code>bytes, </code><code>42</code> <code>tape blocks</code>
<code>[root</code><code>@aix209</code> <code>ssh]#tar xvf OpenSSH_5.</code><code>8.0</code><code>.</code><code>6102</code><code>.tar </code>
2)通過smit安裝
[root@aix209 ssh]#smit installp
3)檢視ssh服務
[root@aix209 ssh]#lssrc -a |grep ssh
sshd ssh 6029368 active
二、配置通過ssh建立主機間的信任關系(Cluster)
One node:
1)建立密鑰
[grid@aix209 grid]$ssh-keygen -t rsa
<code>Generating </code><code>public</code><code>/</code><code>private</code> <code>rsa key pair.</code>
<code>Enter file </code><code>in</code> <code>which to save the key (/home/grid/.ssh/id_rsa): </code>
<code>Created directory </code><code>'/home/grid/.ssh'</code><code>.</code>
<code>Enter passphrase (empty </code><code>for</code> <code>no passphrase): </code>
<code>Enter same passphrase again: </code>
<code>Your identification has been saved </code><code>in</code> <code>/home/grid/.ssh/id_rsa.</code>
<code>Your </code><code>public</code> <code>key has been saved </code><code>in</code> <code>/home/grid/.ssh/id_rsa.pub.</code>
<code>The key fingerprint is:</code>
<code>46</code><code>:8c:ac:aa:</code><code>82</code><code>:</code><code>62</code><code>:b1:5e:e2:ba:ed:d5:</code><code>02</code><code>:5e:f5:</code><code>62</code> <code>grid@aix209</code>
<code>The key's randomart image is:</code>
<code>+--[ RSA </code><code>2048</code><code>]----+</code>
<code>| |</code>
<code>| . o |</code>
<code>| + o |</code>
<code>| o o |</code>
<code>| . o E S |</code>
<code>| o + o o |</code>
<code>|..=.o . |</code>
<code>|==o. . |</code>
<code>|X=o |</code>
<code>+-----------------+</code>
[grid@aix209 grid]$ssh-keygen -t dsa
<code>Generating </code><code>public</code><code>/</code><code>private</code> <code>dsa key pair.</code>
<code>Enter file </code><code>in</code> <code>which to save the key (/home/grid/.ssh/id_dsa): </code>
<code>Your identification has been saved </code><code>in</code> <code>/home/grid/.ssh/id_dsa.</code>
<code>Your </code><code>public</code> <code>key has been saved </code><code>in</code> <code>/home/grid/.ssh/id_dsa.pub.</code>
<code>4a:6d:</code><code>60</code><code>:</code><code>35</code><code>:ee:1c:fe:7d:</code><code>62</code><code>:</code><code>54</code><code>:f6:</code><code>31</code><code>:5c:7b:4a:</code><code>54</code> <code>grid@aix209</code>
<code>+--[ DSA </code><code>1024</code><code>]----+</code>
<code>| o ..E|</code>
<code>| o . .. o|</code>
<code>| o o +=.|</code>
<code>| . * . + o+|</code>
<code>| . S . . .|</code>
<code>| . o . o |</code>
<code>| . . + . |</code>
<code>| . o |</code>
2)配置密鑰對
[grid@aix209 ~]$cd .ssh
[grid@aix209 .ssh]$ls
id_dsa id_dsa.pub id_rsa id_rsa.pub
[grid@aix209 .ssh]$cd ..
[grid@aix209 ~]$cat .ssh/id_rsa.pub >>.ssh/authorized_keys
[grid@aix209 ~]$cat .ssh/id_dsa.pub >>.ssh/authorized_keys
[grid@aix209 ~]$ssh aix210 cat .ssh/id_rsa.pub >>.ssh/authorized_keys
The authenticity of host 'aix210 (192.168.8.210)' can't be established.
RSA key fingerprint is 65:25:9b:46:05:a4:84:73:76:d2:ba:d2:c8:a2:91:0e.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'aix210,192.168.8.210' (RSA) to the list of known hosts.
grid@aix210's password:
[grid@aix209 ~]$ssh aix210 cat .ssh/id_dsa.pub >>.ssh/authorized_keys
[grid@aix209 ~]$scp .ssh/authorized_keys aix210:~/.ssh
authorized_keys 100% 1988 1.9KB/s 00:00
[grid@aix209 ~]$ssh aix210 date
Mon Jan 5 22:24:19 CST 1970
3)測試信任關系
[grid@aix209 ~]$ssh aix210-priv date
The authenticity of host 'aix210-priv (10.10.10.210)' can't be established.
Warning: Permanently added 'aix210-priv,10.10.10.210' (RSA) to the list of known hosts.
Mon Jan 5 22:24:27 CST 1970
[grid@aix209 ~]$ssh aix209-priv date
The authenticity of host 'aix209-priv (10.10.10.209)' can't be established.
RSA key fingerprint is 8f:54:98:0e:1b:c1:81:10:36:88:62:e2:20:61:16:91.
Warning: Permanently added 'aix209-priv,10.10.10.209' (RSA) to the list of known hosts.
Mon Mar 28 18:39:55 CDT 2016
[grid@aix209 ~]$ssh aix209 date
The authenticity of host 'aix209 (192.168.8.209)' can't be setablished.
Warning: Permanently added 'aix209,192.168.8.209' (RSA) to the list of known hosts.
Mon Mar 28 18:40:02 CDT 2016
[grid@aix210 ~]$ssh aix209-priv date
Mon Mar 28 18:40:36 CDT 2016
----- 至此,ssh在AIX系統上安裝配置成功 !
本文轉自 客居天涯 51CTO部落格,原文連結:http://blog.51cto.com/tiany/1758875,如需轉載請自行聯系原作者
![BurpSuite2021系列(七)Repeater詳解[圖]](data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACwAAAAAAQABAAACAkQBADs=)