Presentation is loading. Please wait.

Presentation is loading. Please wait.

AE6382 Secure Shell Usually referred to as ssh, the name refers to both a program and a protocol. The program ssh is one of the most useful networking.

Published byAdrian Floyd Modified over 8 years ago

Similar presentations

Presentation on theme: "AE6382 Secure Shell Usually referred to as ssh, the name refers to both a program and a protocol. The program ssh is one of the most useful networking."— Presentation transcript:

1 AE6382 Secure Shell Usually referred to as ssh, the name refers to both a program and a protocol. The program ssh is one of the most useful networking codes Data encryption and compression Terminal access to remote computers File transfer Command execution on remote computers Support for port forwarding

2 AE6382 Secure Shell There are currently two versions of the SSH protocol. Version 1 is considered insecure and should not be used unless there is no choice. The version to use can be configured on both the client and server systems. The protocol implements Remote terminal Remote file transfer (scp and sftp) Remote command execution The Protocol

3 AE6382 Secure Shell scp is the secure copy operation. It is based on the Unix cp (file copy) program but does so securely across a network. sftp is a file transfer loosely based on the standard ftp file transfer program. It is like ftp only in the client interface. It requires the server to specifically support this option. The Protocol

4 AE6382 Secure Shell There are several implementations of secure shell available both commercial and free. A list of available versions can be located at http://freessh.org/ The most common version for use on Windows is PuTTy Georgia Tech has a license for the commercial SecureCRT program. The most common version for use on Linux is OpenSSH The Program

5 AE6382 Secure Shell PuTTy is a Windows implementation of the ssh program. http://www.chiark.greenend.org.uk/~sgtatham/putty/ It consists of several programs putty.exe – the terminal access program pscp.exe – the file copy program psftp.exe – the ftp-like file transfer program plink.exe – the remote command execution program pageant.exe – program to handle keys puttygen.exe – program to generate keys Program - PuTTy

6 AE6382 Secure Shell When installing PuTTy place all executables in a directory such as c:\putty or c:\bin Place this directory in your path (use System control panel) Program - PuTTy

7 AE6382 Secure Shell There is a free Windows GUI implementation for file transfer, WinSCP, at http://winscp.net/ It implements both scp and sftp A multi-purpose program that implements the ssh/sftp protocol is FileZilla http://filezilla.sourceforge.net/ It also does ftp The Program

8 AE6382 Secure Shell The OpenSSH program is found at, http://www.openssh.org/ This package implements the client, server, and key generation software Intended for BSD, Linux, and Linux systems A Windows installation based on Cygwin can be found at http://sshwindows.sourceforge.net/ A Mac OS graphical file transfer version (sftp) is at, http://rsug.itd.umich.edu/software/fugu/ The Program

9 AE6382 Secure Shell PuTTy Configuration

10 AE6382 Secure Shell PuTTy Configuration

11 AE6382 Secure Shell PuTTy Configuration

12 AE6382 Secure Shell PuTTy Configuration

13 AE6382 Secure Shell PuTTy Configuration Upon first connection the dialog above will appear. A similar dialog will appear if the server’s key has changed. If you accept the server’s identity then press “Yes”.

14 AE6382 Secure Shell PuTTy Remote Terminal A Linux login screen.

15 AE6382 Secure Shell PuTTy Remote Terminal After login.

16 AE6382 Secure Shell pscp source destination Source/destination: user@host:path Do not use user@host for a local file For path use target systems file conventions Spaces in path require quoted names pscp c:\data\data1.dat gburdell@newton.asdl.ae.gatech.edu:/project/data/ pscp gburdell@newton:presentation1.ppt presentation1.ppt File Transfer – PuTTy scp

17 AE6382 Secure Shell psftp server Server: user@host:path psftp gburdell@newton cd /project/data put c:\data\data1.dat exit File Transfer – PuTTy sftp

18 AE6382 Secure Shell File Transfer – WinSCP

19 AE6382 Secure Shell plink –ssh gburdell@newton ls plink –ssh gburdell@newton “cat file” Remote Command Execution – PuTTy

20 AE6382 Secure Shell An alternative to entering your password is to setup ssh’s public key authentication Generate a public/private key pair Distribute the public key to servers Enable public key authentication in client Public Keys for SSH Authentication

21 AE6382 Secure Shell Use the puttygen.exe program to generate key pair Public Keys for SSH Authentication - PuTTy

22 AE6382 Secure Shell Save your key files on local disk, use a pass phrase Transfer the public key to the server Usually the server is OpenSSH based Get a copy of.ssh/authorized_keys from server (scp) Open in WordPad Paste the key from puttygen into the file Place back on server Public Keys for SSH Authentication - PuTTy

23 AE6382 Secure Shell When public key authentication is used by the client the software will read the private key. To do so it requests the pass-phrase. The PuTTy pageant.exe program, when run at startup, will request the pass-phrase and supply it later when needed. Public Keys for SSH Authentication - PuTTy

24 AE6382 Secure Shell Makes it possible to make a connection where it is otherwise impossible, for example, through a firewall. Requires connecting to an SSH server that has access to the ultimate target system. Sets up a proxy-pair on the client and the ssh server to transmit data to the target. Only works with TCP ports. Creates an encrypted and authenticated tunnel. Port Forwarding

25 AE6382 Secure Shell The –L option controls port forwarding -L local-loopback-addr:local-port:remote-addr:remote-port Port Forwarding

26 AE6382 Secure Shell Connect to your WinXP computer from a remote WinXP computer. Requires an SSH port forwarding to penetrate firewall. SSH command to port forward plink –ssh –L 9000:172.16.4.13:3389 gburdell@asdl.ae.gatech.edu cat - Be very careful not to connect to your own system. plink –ssh –L 3389:172.16.4.13:3389 gburdell@asdl.ae.gatech.edu cat - NO! Tutorial on using remote desktop http://www.microsoft.com/windowsxp/using/mobility/getstarted/remoteintro.mspx For ASDL the external SSH gateway is asdl.ae.gatech.edu Port Forwarding – Remote Desktop

Download ppt "AE6382 Secure Shell Usually referred to as ssh, the name refers to both a program and a protocol. The program ssh is one of the most useful networking."

Similar presentations

1 Automated SFTP Windows and SUN Linux and SUN. 2 Vocabulary  Client = local=the machine generating the SFTP request  Server = remote = the machine.

1 Automated SFTP Windows and SUN Linux and SUN. 2 Vocabulary  Client = local=the machine generating the SFTP request  Server = remote = the machine.
SSH Operation and Techniques - © 2001-2006 William Stearns 1 SSH Operation and Techniques The Swiss Army Knife of encryption tools…

SSH Operation and Techniques - © William Stearns 1 SSH Operation and Techniques The Swiss Army Knife of encryption tools…
Computer Organization Tools Computer Organization 1 ©2005-2015 WD McQuain Programming Tools Most of the programming assignments will require using.

Computer Organization Tools Computer Organization 1 © WD McQuain Programming Tools Most of the programming assignments will require using.
Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.

Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.
Setting up your System Contents Required Software Flip and flop servers at OSU Using WinSCP Using Putty Using ssh, scp from Linux terminal.

Setting up your System Contents Required Software Flip and flop servers at OSU Using WinSCP Using Putty Using ssh, scp from Linux terminal.
Working Environment - - Linux - -.

Working Environment - - Linux - -.
Telnet/SSH Tim Jansen, Mike Stanislawski. TELNET is short for Terminal Network Enables the establishment of a connection to a remote system, so that the.

Telnet/SSH Tim Jansen, Mike Stanislawski. TELNET is short for Terminal Network Enables the establishment of a connection to a remote system, so that the.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Guide To UNIX Using Linux Third Edition

Guide To UNIX Using Linux Third Edition
1 SEEM3460 Tutorial Access to Unix Workstations in SE.

1 SEEM3460 Tutorial Access to Unix Workstations in SE.
COS 420 DAY 24. Agenda Assignment 5 posted Chap 22-26 Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.

COS 420 DAY 24. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.
Virtual Machine and UNIX. What is a VM? VM stands for Virtual Machine. It is a software emulation of hardware. By using a VM, you can have the same hardware.

Virtual Machine and UNIX. What is a VM? VM stands for Virtual Machine. It is a software emulation of hardware. By using a VM, you can have the same hardware.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Remote access and file transfer Getting files on and off Bio-Linux.

Remote access and file transfer Getting files on and off Bio-Linux.
Firewalls, Perimeter Protection, and VPNs - SANS ©2001 1 SSH Operation The Swiss Army Knife of encryption tools…

Firewalls, Perimeter Protection, and VPNs - SANS © SSH Operation The Swiss Army Knife of encryption tools…
Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.

Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.
A crash course in njit’s Afs

A crash course in njit’s Afs
Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.

Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.
Telnet/SSH: Connecting to Hosts Internet Technology1.

Telnet/SSH: Connecting to Hosts Internet Technology1.
OpenSSH: A Telnet Replacement Presented by Aaron Grothe Heimdall Linux, Inc.

OpenSSH: A Telnet Replacement Presented by Aaron Grothe Heimdall Linux, Inc.

Similar presentations

Ads by Google