2002-07-08 04:28:42 +08:00
|
|
|
<sect2>
|
2003-07-02 10:08:12 +08:00
|
|
|
<title>Configuring <application>OpenSSH</application></title>
|
2002-07-08 04:28:42 +08:00
|
|
|
|
|
|
|
|
<sect3><title>Config files</title>
|
|
|
|
|
|
2003-04-21 06:15:01 +08:00
|
|
|
<para><filename>/etc/ssh/ssh_config</filename>,
|
|
|
|
|
<filename>/etc/ssh/sshd_config </filename></para>
|
2002-07-08 04:28:42 +08:00
|
|
|
<para>There are no required changes in either of these files. However
|
|
|
|
|
you may wish to view them to make changes for appropriate security to
|
|
|
|
|
your system. Configuration information can be found in the man pages for sshd, ssh and ssh-agent</para>
|
|
|
|
|
</sect3>
|
|
|
|
|
|
|
|
|
|
<sect3><title>sshd init.d script</title>
|
|
|
|
|
|
|
|
|
|
<para>Note that you only want to start the sshd server if you want to be
|
|
|
|
|
able to ssh <emphasis>into</emphasis> your machine. The ssh client
|
|
|
|
|
doesn't need this script to be used. Having said that, if you want to
|
|
|
|
|
run the ssh daemon, the sshd init.d script can be created using the following
|
|
|
|
|
commands:</para>
|
|
|
|
|
|
2003-07-02 10:08:12 +08:00
|
|
|
<para><screen><userinput><command>cat > /etc/rc.d/init.d/sshd << "EOF"</command>
|
2002-07-08 04:28:42 +08:00
|
|
|
#!/bin/sh
|
|
|
|
|
# Begin $rc_base/init.d/sshd
|
|
|
|
|
|
|
|
|
|
# Based on sysklogd script from LFS-3.1 and earlier.
|
|
|
|
|
# Rewritten by Gerard Beekmans - gerard@linuxfromscratch.org
|
|
|
|
|
|
|
|
|
|
source /etc/sysconfig/rc
|
|
|
|
|
source $rc_functions
|
|
|
|
|
|
|
|
|
|
case "$1" in
|
|
|
|
|
start)
|
|
|
|
|
echo "Starting SSH Server..."
|
2003-01-18 09:56:03 +08:00
|
|
|
loadproc /usr/sbin/sshd
|
2002-07-08 04:28:42 +08:00
|
|
|
;;
|
|
|
|
|
|
|
|
|
|
stop)
|
|
|
|
|
echo "Stopping SSH Server..."
|
2003-01-18 09:56:03 +08:00
|
|
|
killproc /usr/sbin/sshd
|
2002-07-08 04:28:42 +08:00
|
|
|
;;
|
|
|
|
|
|
|
|
|
|
reload)
|
|
|
|
|
echo "Reloading SSH Server..."
|
2003-01-18 09:56:03 +08:00
|
|
|
reloadproc /usr/sbin/sshd
|
2002-07-08 04:28:42 +08:00
|
|
|
;;
|
|
|
|
|
|
|
|
|
|
restart)
|
|
|
|
|
$0 stop
|
|
|
|
|
sleep 1
|
|
|
|
|
$0 start
|
|
|
|
|
;;
|
|
|
|
|
|
|
|
|
|
status)
|
2003-01-18 09:56:03 +08:00
|
|
|
statusproc /usr/sbin/sshd
|
2002-07-08 04:28:42 +08:00
|
|
|
;;
|
|
|
|
|
|
|
|
|
|
*)
|
|
|
|
|
echo "Usage: $0 {start|stop|reload|restart|status}"
|
|
|
|
|
exit 1
|
|
|
|
|
;;
|
|
|
|
|
esac
|
|
|
|
|
|
|
|
|
|
# End $rc_base/init.d/sshd
|
2003-07-02 10:08:12 +08:00
|
|
|
<command>EOF
|
|
|
|
|
chmod 755 /etc/rc.d/init.d/sshd</command></userinput></screen></para>
|
2002-07-08 04:28:42 +08:00
|
|
|
|
2003-04-22 11:06:28 +08:00
|
|
|
<para>Create the symbolic links to this file in the relevant <filename
|
|
|
|
|
class="directory">rc.d</filename> directories with the following commands:
|
2003-07-02 10:08:12 +08:00
|
|
|
<screen><userinput><command>cd /etc/rc.d/init.d &&
|
2002-07-08 04:28:42 +08:00
|
|
|
ln -sf ../init.d/sshd ../rc0.d/K30sshd &&
|
|
|
|
|
ln -sf ../init.d/sshd ../rc1.d/K30sshd &&
|
|
|
|
|
ln -sf ../init.d/sshd ../rc2.d/K30sshd &&
|
|
|
|
|
ln -sf ../init.d/sshd ../rc3.d/S30sshd &&
|
|
|
|
|
ln -sf ../init.d/sshd ../rc4.d/S30sshd &&
|
|
|
|
|
ln -sf ../init.d/sshd ../rc5.d/S30sshd &&
|
2003-07-02 10:08:12 +08:00
|
|
|
ln -sf ../init.d/sshd ../rc6.d/K30sshd</command></userinput></screen></para>
|
2002-07-08 04:28:42 +08:00
|
|
|
|
|
|
|
|
</sect3>
|
|
|
|
|
|
|
|
|
|
</sect2>
|
|
|
|
|
|
