Mastering SSH!
A thread 👇🐧
A thread 👇🐧
What is SSH!
SSH (Secure Shell) is a network protocol that allows secure communication over an unsecured network. It provides encrypted connections between two devices, typically used for remote login and command execution.
SSH (Secure Shell) is a network protocol that allows secure communication over an unsecured network. It provides encrypted connections between two devices, typically used for remote login and command execution.
How SSH is Secure!
1) Security in SSH is achieved through encryption. When you connect to a remote server via SSH, all data exchanged between your device and the server is encrypted, making it difficult for malicious actors to intercept or tamper with the communication.
1) Security in SSH is achieved through encryption. When you connect to a remote server via SSH, all data exchanged between your device and the server is encrypted, making it difficult for malicious actors to intercept or tamper with the communication.
2) SSH utilizes public-key cryptography to authenticate the remote computer and allow secure authentication without transmitting passwords in plain text over the network.
3) One key aspect of SSH security is its ability to prevent man-in-the-middle attacks. Through key exchange protocols, SSH ensures that both the client and server are who they claim to be before establishing a connection.
15 SSH Commands Explained 👇
1/15: Connect to a Remote Host:
ssh username@hostname
Initiate a secure shell connection to a remote host using the provided username and hostname. This prompts for authentication before granting access.
ssh username@hostname
Initiate a secure shell connection to a remote host using the provided username and hostname. This prompts for authentication before granting access.
2/15: Specify a Port:
ssh -p port username@hostname
Use a non-default port for the SSH connection. Default SSH port is 22, but you can specify a different port if needed.
ssh -p port username@hostname
Use a non-default port for the SSH connection. Default SSH port is 22, but you can specify a different port if needed.
3/15: Generate RSA Key Pair:
ssh-keygen -t rsa -b 4096
Create an RSA key pair for SSH authentication. This generates a public and private key pair with a strong 4096-bit key size.
ssh-keygen -t rsa -b 4096
Create an RSA key pair for SSH authentication. This generates a public and private key pair with a strong 4096-bit key size.
4/15: Copy SSH Public Key:
ssh-copy-id username@hostname
Copy your SSH public key to the remote host's authorized_keys file, enabling passwordless login for future SSH connections.
ssh-copy-id username@hostname
Copy your SSH public key to the remote host's authorized_keys file, enabling passwordless login for future SSH connections.
5/15: Add Private Key to Agent:
ssh-add ~/.ssh/id_rsa
Add your private key to the SSH authentication agent. This allows using your SSH private key for authentication without entering the passphrase every time.
ssh-add ~/.ssh/id_rsa
Add your private key to the SSH authentication agent. This allows using your SSH private key for authentication without entering the passphrase every time.
6/15: Enable X11 Forwarding:
ssh -X username@hostname
Enable X11 forwarding, allowing graphical applications from the remote host to display on your local machine.
ssh -X username@hostname
Enable X11 forwarding, allowing graphical applications from the remote host to display on your local machine.
7/15: Mount Remote Directory Locally:
sshfs username@hostname:/remote/directory /local/mount/point
Securely mount a remote directory on your local file system using SSHFS. Access files on the remote host as if they were local.
sshfs username@hostname:/remote/directory /local/mount/point
Securely mount a remote directory on your local file system using SSHFS. Access files on the remote host as if they were local.
8/15: Copy Local to Remote:
scp file.txt username@hostname:/remote/directory
Copy a file from your local machine to a remote host securely using SCP (Secure Copy Protocol).
scp file.txt username@hostname:/remote/directory
Copy a file from your local machine to a remote host securely using SCP (Secure Copy Protocol).
9/15: Copy Remote to Local:
scp username@hostname:/remote/file.txt /local/directory
Copy a file from a remote host to your local machine securely using SCP.
scp username@hostname:/remote/file.txt /local/directory
Copy a file from a remote host to your local machine securely using SCP.
10/15: Local Port Forwarding:
ssh -L local_port:destination_host:destination_port username@ssh_server
Set up local port forwarding through an SSH tunnel, securely accessing services on a remote host.
ssh -L local_port:destination_host:destination_port username@ssh_server
Set up local port forwarding through an SSH tunnel, securely accessing services on a remote host.
11/15: Remote Port Forwarding:
ssh -R remote_port:localhost:local_port username@ssh_server
Configure remote port forwarding, allowing services on the remote host to access ports on your local machine securely.
ssh -R remote_port:localhost:local_port username@ssh_server
Configure remote port forwarding, allowing services on the remote host to access ports on your local machine securely.
12/15: Dynamic Port Forwarding:
ssh -D local_socks_port username@ssh_server
Establish dynamic port forwarding, creating a SOCKS proxy on your local machine for securely routing traffic through the SSH connection.
ssh -D local_socks_port username@ssh_server
Establish dynamic port forwarding, creating a SOCKS proxy on your local machine for securely routing traffic through the SSH connection.
13/15: Execute Remote Command:
ssh -T username@hostname "command"
Run a single command on the remote host without opening an interactive shell. Replace "command" with the desired command.
ssh -T username@hostname "command"
Run a single command on the remote host without opening an interactive shell. Replace "command" with the desired command.
14/15: Start Connection Without Command:
ssh -N -L local_port:destination_host:destination_port username@ssh_server
Start an SSH connection without executing any remote commands, useful for setting up tunnels only.
ssh -N -L local_port:destination_host:destination_port username@ssh_server
Start an SSH connection without executing any remote commands, useful for setting up tunnels only.
15/15: Specify Private Key:
ssh -i path/to/private/key username@hostname
Specify a private key file for authentication, useful when managing multiple SSH keys for different connections.
ssh -i path/to/private/key username@hostname
Specify a private key file for authentication, useful when managing multiple SSH keys for different connections.
With the widespread use of SSH, it has become a fundamental tool for system administrators, developers, and anyone who needs to securely access or manage remote systems or transfer files over a network.
Overall, SSH's combination of encryption, authentication methods, and secure protocols makes it a robust and reliable solution for ensuring the confidentiality, integrity, and authenticity of remote communication and data transfer. #SSH #Security #Encryption
Repost the thread if you find it useful. Thanks!
Loading suggestions...