Editing SSH
Warning: You are not logged in.
Your IP address will be recorded in this page's edit history.
The edit can be undone.
Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 3: | Line 3: | ||
#Administrating remote computers such as servers by using the device over a secure connection instead of plain-text. | #Administrating remote computers such as servers by using the device over a secure connection instead of plain-text. | ||
#When performing console operations one may stumble upon limits such as text-input, battery life, raw horsepower, or available software. | #When performing console operations one may stumble upon limits such as text-input, battery life, raw horsepower, or available software. | ||
- | #Some applications require a better network connection than device provides. E.g. a colocated 100 | + | #Some applications require a better network connection than device provides. E.g. a colocated 100 mbit server running 24/7 is usually both faster as well as more reliable than a device on WiFi or 3G. |
#Combined with a terminal emulator supporting detaching such as screen or dtach an application remains running after network connection is gone, device is unpowered. | #Combined with a terminal emulator supporting detaching such as screen or dtach an application remains running after network connection is gone, device is unpowered. | ||
- | #SSH protocol can be used for remote X11, forwarding, tunneling, | + | #SSH protocol can be used for remote X11, forwarding, tunneling, VPN, port knocking alternative. These are intermediate-advanced topics requiring sufficient background knowledge. |
== Flavours to install on your device == | == Flavours to install on your device == | ||
- | |||
=== OpenSSH === | === OpenSSH === | ||
- | + | OpenSSH is the most common client and server package. It is available in [[Extras]]. You can install either only the client or server, or both depending on your particular use-case. Be aware that the installation may take a while and appear frozen, as SSH keys have to be generated during the install. | |
- | + | ||
- | + | ||
=== Dropbear === | === Dropbear === | ||
- | + | Dropbear is an alternative ssh client/server package which uses less disk/memory. | |
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
== On-device Usage == | == On-device Usage == | ||
=== Client === | === Client === | ||
+ | To allow you to use your tablet/phone to connect to other machines. | ||
- | + | You can connect to a remote machine from the tablet by running <code>ssh ''user''@''server ip''</code>. This will give you a remote shell on the server machine. | |
- | + | ||
- | + | ||
- | + | ||
- | + | ||
=== Server === | === Server === | ||
+ | To allow other machines to connect to your tablet/phone. | ||
- | + | If you wish to access a shell on the tablet from a remote machine (to edit a local file with a real keyboard, perhaps), then all that you need to do is make sure OpenSSH server is installed on the tablet and <code>ssh root@''tablet ip''</code> | |
- | + | ||
- | + | ||
Note that N900's are called "Nokia-N900-41-10" if allocated an IP address via DHCP (see [https://bugs.maemo.org/show_bug.cgi?id=2758 this bug]) | Note that N900's are called "Nokia-N900-41-10" if allocated an IP address via DHCP (see [https://bugs.maemo.org/show_bug.cgi?id=2758 this bug]) | ||
- | |||
- | |||
- | |||
- | |||
- | |||
- | |||
- | |||
- | |||
== PuTTY == | == PuTTY == | ||
- | PuTTY is a client for the SSH | + | PuTTY is a client for the SSH & [the abysmally insecure] Telnet protocols. It is a popular client for Microsoft Windows, *Nix Operating Systems with ports even existing for Symbian phones, Windows Mobile and even the internet tablet itself. It can be used to connect to a tablet running OpenSSH to get a remote shell. |
=== Usage === | === Usage === | ||
- | # Load up PuTTY on the machine you want to connect to the tablet from. You should see the window titled "PuTTY Configuration" and the "Session" category selected. | + | # Load up PuTTY on the machine you want to connect to the tablet from. |
- | # Ensure "SSH" is selected as the "Connection type:" and enter the tablet's | + | ## You should see the window titled "PuTTY Configuration" and the "Session" category selected. |
+ | # Ensure "SSH" is selected as the "Connection type:" and enter <code>the tablet's ip</code> in the "Host Name (or IP address)" section. | ||
# ''If'' you need to change any other settings out of necessity or personal preference for example, go and change settings as required. | # ''If'' you need to change any other settings out of necessity or personal preference for example, go and change settings as required. | ||
# If you want to save these settings for future use to connect to the tablet quickly, add a name in "Saved Sessions" and press Save. | # If you want to save these settings for future use to connect to the tablet quickly, add a name in "Saved Sessions" and press Save. | ||
- | # Press Open and enter the name of the user you wish to connect as when prompted. ( | + | # Press Open and enter the name of the user you wish to connect as when prompted. (root is commonly used) |
- | + | ||
- | + | ||
- | + | ||
=== Extra security AND convenience === | === Extra security AND convenience === | ||
+ | It is fairly easy to generate a secure key to allow password-less login to the device. Provided you keep the key secure then this is actually much more secure than using a password. | ||
- | + | Make sure you can ssh into the device. | |
- | + | ||
- | + | ||
On the device you need to create a directory in the appropriate users home directory: | On the device you need to create a directory in the appropriate users home directory: | ||
- | + | cd | |
- | + | mkdir .ssh | |
- | + | chmod 700 .ssh | |
- | Back on the | + | Back on the linux box run the following command and take the defaults: |
- | + | ssh-keygen -t rsa | |
- | You'll find a file in your home directory called | + | You'll find a file in your home directory called .ssh/id_rsa.pub and .ssh/id_rsa |
+ | The .pub one is allowed out in public - you give it to other machines. The other one must be kept private. | ||
- | |||
- | Then if you use | + | Then if you use openSSH: |
- | + | scp .ssh/id_rsa.pub <user>@<device>:.ssh/authorized_keys2 | |
- | + | ||
- | + | ||
For dropbear: | For dropbear: | ||
- | + | scp .ssh/id_rsa.pub <user>@<device>:.ssh/authorized_keys | |
- | This will ask for | + | This will ask for the password to copy across the key. |
Now try: | Now try: | ||
- | ssh <user>@< | + | ssh <user>@<device> |
- | and you should just get a shell login | + | and you should just get a shell login. |
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
[[Category:Users]] | [[Category:Users]] | ||
[[Category:Connectivity]] | [[Category:Connectivity]] | ||
- |
Learn more about Contributing to the wiki.