Hexo
0%

发表于 更新于 分类于

1、开启telnet防止意外导致ssh无法连接

1、安装 telnet 避免 ssh 无法登录
1
yum -y install xinetd telnet telnet-server
2、 允许 root 账号登陆
1
2
echo  'pts/0'  >>/etc/securetty
echo 'pts/1' >>/etc/securetty
3、添加防火墙端口
1
2
vi /etc/sysconfig/iptables  
-A INPUT -p tcp -m state --state NEW -m tcp --dport 23 -j ACCEPT
4、重启服务关闭 firewalld
1
2
3
systemctl restart iptables  
systemctl disable firewalld  
systemctl stop firewalldT
5、注册服务
1
2
3
4
5
systemctl enable telnet.socket  
systemctl start telnet.socket  
systemctl enable xinetd  
systemctl start xinetd  
systemctl restart telnet.socket

2、升级SSH

1、查看ssh版本号
1
ssh -V
2、下载OpenSSH
1
2
yum install wget
wget  https://mirror.vdms.io/pub/OpenBSD/OpenSSH/portable/openssh-7.7p1.tar.gz
3、备份ssh
1
mv /usr/bin/ssh /usr/local/bin/shh.bak
4、解压:
1
tar -zxf openssh-7.7p1.tar.gz
5、安装依赖包:
1
yum -y install pam-devel.x86_64 zlib-devel.x86_64 gcc openssl-devel
6、删除旧版shh
1
2
3
#rpm -e --nodeps `rpm -qa | grep openssh`
查看相关包:rpm -qa|grep openssh
删除相关包:rpm -e --nodeps xxx
7、编译安装新版
1
2
3
cd /usr/local/bin/openssh-7.7p1
./configure 
make && make install
8、配置sshd服务并加入开机启动
1
2
cp /usr/local/bin/openssh-7.7p1/contrib/redhat/sshd.init /etc/init.d/sshd
chmod +x /etc/init.d/sshd
9、修改SSHD服务文件
1
2
3
4
5
6
vim /etc/init.d/sshd
修改以下内容
SSHD=/usr/sbin/sshd 为 SSHD=/usr/local/sbin/sshd
/usr/sbin/ssh-keygen -A 为 /usr/local/bin/ssh-keygen -A 
保存退出
chkconfig --add sshd
10、查看系统启动服务是否增加改项
1
2
chkconfig --list |grep sshd
#显示如下:sshd         0:off    1:off    2:on    3:on    4:on    5:on    6:off
11、允许root用户远程登录
1
2
3
4
5
6
7
8
9
cp /usr/local/bin/openssh-7.7p1/sshd_config  /usr/local/etc/sshd_config
vim  /usr/local/etc/sshd_config
添加:PermitRootLogin  yes

ps:
因为openssh安装好默认是不执行sshd_config文件的,所以即使在sshd_config中配置允许root用户远程登录,但是不加上这句命令,还是不会生效!
vim /etc/init.d/sshd
在 $SSHD $OPTIONS && success || failure这一行上面加上一行  
OPTIONS="-f /usr/local/etc/sshd_config"
12、重启生效
1
service sshd start

3、删除Telnet

12、安装测试ssh可用后删除Telnet
1
2
3
4
查看相关包: rpm -qa | grep telnet
删除相关包:rpm -e --nodeps xxx
systemctl disable xinetd
systemctl disable telnet.socket

发表于 更新于

Welcome to Hexo! This is your very first post. Check documentation for more info. If you get any problems when using Hexo, you can find the answer in troubleshooting or you can ask me on GitHub.

Quick Start

Create a new post

1
$ hexo new "My New Post"

More info: Writing

Run server

1
$ hexo server

More info: Server

Generate static files

1
$ hexo generate

More info: Generating

Deploy to remote sites

1
$ hexo deploy

修改默认语言为中文

1
2
修改hexo配置文件 _config.yml文件
language: zh-Hans

启动分类和标签

1
2
3
4
5
6
修改主题 _config.yml文件
menu:
  home: / || home
  tags: /tags/ || tags
  categories: /categories/ || th
  archives: /archives/ || archive

创建分类页面

1
2
hexo new page categories
编辑categories文件夹下的index.md
1
2
3
4
5
---
title: 分类
type: "categories" #将页面的类型设置为categories
date: 2018-11-05 16:12:21
---

创建标签页面

1
2
hexo new page tags
编辑categories文件夹下的index.md
1
2
3
4
5
---
title: 标签
type: "tags" #将页面的类型设置为tags
date: 2018-11-05 16:12:21
---

More info: Deployment