\begin{frame}[fragile]
\frametitle{Installeren}
- \begin{block}{Verschillende smaken}
- Openssh-server\\
- Dropbear\\
- ...
+ \begin{block}{Smaken}
+ \begin{enumerate}
+ \item OpenSSH
+ \item Dropbear
+ \item lsh
+ \item ...
+ \end{enumerate}
\end{block}
+ \pause
\begin{block}{Installeren}
\begin{lstlisting}
- sudo apt-get install {openssh-server,dropbear}
- yum
- pacman
- zypper
- ...
+ # apt-get install openssh-server
+ # pacman -S openssh
+ # yum install openssh-server
+ # zypper install openssh-server
\end{lstlisting}
\end{block}
\end{frame}
\begin{frame}[fragile]
- \frametitle{Configureren systeem breed}
- \begin{block}{/etc/ssh/sshd\_config}
- \lstinline{man sshd\_config}
- \end{block}
+ \frametitle{/etc/ssh/sshd\_config}
\begin{block}{Broodnodig}
- \lstinline{AllowUsers henk}
- \end{block}
- \end{frame}
-
- \begin{frame}[fragile]
- \frametitle{Configureren per user}
- \begin{block}{\textasciitilde/.ssh/authorized\_keys}
- \lstinline{parameter1="waarde",parameter2="waarde", ... ,parameter2="waarde",ssh-rsa AAAAB3N...}
+ \lstinline{AllowUsers frobnicator}\\
\end{block}
- \begin{block}{Merk op}
- alles in \textasciitilde/.ssh/ moet alleen leesbaar zijn voor de user.
- \lstinline{chmod 600} dus
+ \pause
+ \begin{block}{Verder}
+ \begin{enumerate}
+ \item PermitOpen
+ \item X11Forwarding
+ \item PermitRootLogin
+ \item ChrootDirectory
+ \item ...
+ \item \lstinline{$ man sshd_config}
+ \end{enumerate}
++>>>>>>> 045d7a2a20106057e9b1a2b7ce76c3ae174ab6b8
\end{block}
\end{frame}
\end{block}
\pause
\begin{block}{Command line vlag}
- \lstinline{ssh -i ~/.ssh/keyfile user@server.nl}
+ \lstinline{ssh -i ~/.ssh/keyfile frobnicator@foobarbaz.com}
\end{block}
\pause
\begin{block}{Config file}
\begin{block}{\$ ssh-keygen}
\begin{lstlisting}
Generating public/private rsa key pair.
- Enter file in which to save the key (/home/user/.ssh/id_rsa):
- /home/user/.ssh/github
+ Enter file in which to save the key (/home/frobnicator/.ssh/id_rsa):
+ /home/frobnicator/.ssh/github
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
- Your identification has been saved in /home/user/.ssh/github.
- Your public key has been saved in /home/user/.ssh/github.pub.
+ Your identification has been saved in /home/frobnicator/.ssh/github.
+ Your public key has been saved in /home/frobnicator/.ssh/github.pub.
The key fingerprint is:
- 92:92:6e:b8:3f:d5:76:e8:1b:73:ed:97:c4:e5:87:ba user@system
+ 92:92:6e:b8:3f:d5:76:e8:1b:73:ed:97:c4:e5:87:ba frobnicator@foobarbaz
The key's randomart image is:
+--[ RSA 2048]----+
| |
BcW55x3LR/2fLSujUqcloQNwLUpD5da6eGg9yPo1fEaAOK1ssHGA30o6nmDEZEHy
PFgBtPwtDw5TPXPpzslaJx1u7CdeyzqpYsUycxzboy3GBcCsvG4nzD4C9vd0yk5o
jlDeECul4mwyg7NuEjltaY89RzrSa8NtqtURyg/JFQW2IVGe+oBXeTL/eQRuo1Nj
- GhYyPm1VMVM+NvaYQZXxGfLpoDoP2V+deD+gP5DuC8WW4LSGnkHKhDEin0Yl mar
- t@valhalla
+ GhYyPm1VMVM+NvaYQZXxGfLpoDoP2V+deD+gP5DuC8WW4LSGnkHKhDEin0Yl foo
+ @foobarbaz
\end{lstlisting}
\end{block}
\pause
\end{block}
\end{frame}
+ \begin{frame}[fragile]
+ \frametitle{Public key authentication}
+ \begin{block}{\textasciitilde/.ssh/authorized\_keys}
+ \begin{lstlisting}
+ option1="option1value",option2="option2value"...optionn="optionnvalue" ssh-rsa\
+ AAAB4N.....
+ \end{lstlisting}
+ \end{block}
++ \begin{block}{Merk op}
++ alles in \textasciitilde/.ssh/ moet alleen leesbaar zijn voor de user.
++ \lstinline{chmod 600} dus
++ \end{block}
+ \end{frame}
+
\begin{frame}[fragile]
\frametitle{X forwarding}
\begin{block}{Nut}
\end{block}
\pause
\begin{block}{Command line vlag}
- \lstinline{ssh -X user@server.nl}
+ \lstinline{ssh -X frobnicator@foobarbaz.com}
\end{block}
\pause
\begin{block}{Config file}
\end{block}
\pause
\begin{block}{Command line vlag}
- \lstinline{ssh -L port:host:hostport}\\
- \lstinline{ssh -R port:host:hostport}
+ \lstinline{ssh -L port:host:hostport frobnicator@foobarbaz.com}\\
+ \lstinline{ssh -R port:host:hostport frobnicator@foobarbaz.com}
\end{block}
\pause
\begin{block}{Config file}
\end{block}
\pause
\begin{block}{Command line vlag}
- \lstinline{ssh -A user@system}
+ \lstinline{ssh -A frobnicator@foobarbaz.com}
\end{block}
\pause
\begin{block}{Config file}
\end{block}
\pause
\begin{block}{Command line vlag}
- \lstinline{ssh -D port}
+ \lstinline{ssh -D port frobnicator@foobarbaz.com}
\end{block}
\pause
\begin{block}{Config file}
Edit - Preferences - Advanced - Network - Settings
\includegraphics[width=200px]{./img/firefox_socks.png}
\end{frame}
+
+ \begin{frame}[fragile]
+ \frametitle{Compression}
+ \begin{block}{Nut}
+ Snelheid
+ \end{block}
+ \pause
+ \begin{block}{Command line vlag}
+ \lstinline{ssh -C frobnicator@foobarbaz.com}
+ \end{block}
+ \pause
+ \begin{block}{Config file}
+ \lstinline{Compression yes}
+ \end{block}
+ \end{frame}