Red Hat Linux 9: Red Hat Linux �� ̵�
��	15�� . OpenSSH	��

15.3. OpenSSH Ŭ��̾�Ʈ ��

Ŭ��̾�Ʈ ��ǻ�Ϳ�� OpenSSH �� ϱ� ��ؼ�� Ŭ��̾�Ʈ ��ǻ�� openssh-clients ��Ű�� openssh ��Ű�� ġ�Ǿ� �־�� մϴ�.

15.3.1. `ssh` ��ɾ� ��ϱ�

ssh �� rlogin, rsh, telnet �� ü�Դϴ�. ssh �� Ͽ� �� ǻ�Ϳ� �α��Ͻ� �� ൵ ��մϴ�.

ssh �� Ͽ� �� ǻ�Ϳ� �α��ϴ� �� telnet �� ϴ� ��İ� ��մϴ�. �� , penguin.example.net�̶�� ǻ�Ϳ� �α��ϱ� ��ؼ��, �� Ʈ �󿡼� �� Է��մϴ�:

ssh penguin.example.net

�� ǻ�Ϳ� ó�� ssh �Ͻ� ��, �� ޽�� Դϴ�:

The authenticity of host 'penguin.example.net' can't be established.
DSA key fingerprint is 94:68:3a:3a:bc:f3:9a:9b:01:5d:b3:07:38:e2:11:0c.
Are you sure you want to continue connecting (yes/no)?

yes�� Է��Ͽ� �� մϴ�. �̷�� Ͽ� �� ޽�� ̵�� ˷�� ȣ��Ʈ�� Ͽ� �ش� �� ߰��˴ϴ�:

Warning: Permanently added 'penguin.example.net' (RSA) to the list of known hosts.

�� ǻ�Ϳ� ��ϱ� �� ȣ�� Է��ϼž� �մϴ�. ��ȣ�� Է��Ͻø�, �� ǻ�� Ʈ�� Ÿ��ϴ�. Ư�� ڸ�� ø�, �� Ŭ��̾�Ʈ ��ǻ�Ϳ�� α��ϼ̴� ��ڸ�� ǻ�ͷ� ��޵˴ϴ�. �ٸ� ��ڸ�� ϱ� ��ؼ�� Ͻʽÿ�:

ssh username@penguin.example.net

ssh -l ��ڸ� penguin.example.net �� ϼŵ� �˴ϴ�.

ssh �� Ͽ� �� Ʈ�� α�� ʿ䰡 �� ǻ�� 󿡼� �� ֽ��ϴ�. ��ɾ� �� ssh hostname command �Դϴ�. �� ls /usr/share/doc �� penguin.example.net �� ǻ�Ϳ�� ϰ� �ʹٸ�, �� Ʈ�� Է��մϴ�:

ssh penguin.example.net ls /usr/share/doc

�ùٸ� ��ȣ�� Է��Ͻø� �� 丮 /usr/share/doc�� , �� Ʈ�� ǵ�� ɴϴ�.

15.3.2. `scp` ��ɾ� ��ϱ�

scp �� ǻ�� ̿� ��ϰ� ��ȣȭ�� Ͽ� �� ϴµ� ��˴ϴ�. rcp�� մϴ�.

�� ý�� Ǵ� �Ϲ�� ϴ�:

scp localfile username@tohostname:/newfilename

��⼭ localfile�� ҽ�� ϸ� username@tohostname:/newfilename�� ܵ� �� մϴ�.

�� penguin.example.net�� shadowman �� ϱ� ��ؼ��, �� Ʈ�� Է��մϴ�. (�� ɿ�� username�� ü�Ͻʽÿ�):

scp shadowman username@penguin.example.net:/home/username

�� shadowman �� penguin.example.net ��ǻ�� /home/username/shadowman�� Դϴ�

�� ǻ�Ϳ�� ý�� ϱ� ��ؼ�� ˴ϴ�:

scp username@tohostname:/remotefile /newlocalfile

��⼭ remotefile�� ҽ�� ϸ�, newlocalfile�� ޵� �� մϴ�.

�� ҽ� ��Ϸ� �� մϴ�. �� /downloads ��丮�� ǻ�� penguin.example.net �� uploads ��丮�� ϱ� ��ؼ��, �� Ʈ �󿡼� �� Է��մϴ�:

scp /downloads/* username@penguin.example.net:/uploads/

15.3.3. `sftp` ��ɾ� ��ϱ�

sftp ��ƿ��Ƽ�� ȣ ��ȭ�� FTP �� µ� ��˴ϴ�. ftp�� sftp�� ȣȭ�� Ѵٴ� �� ֽ��ϴ�. �Ϲ�� sftp username@hostname.com �Դϴ�. �ϴ� �� , FTP�� Ǵ� �Ͱ� �� ɾ ��Ͻ� �� ֽ��ϴ�. �� ɾ� �� ÷�� sftp �޴�� Ͻñ� �ٶ��ϴ�. �޴�� б� ��ؼ��, �� Ʈ�� man sftp �� մϴ�. sftp ��ƿ��Ƽ�� OpenSSH 2.5.0p1 �� մϴ�.

15.3.4. Ű �� ϱ�

ssh, scp, �Ǵ� sftp �� Ͽ� �� ǻ�Ϳ� �� ȣ�� Է��ϴ� �� ġ ��ø�, �� Ű �� (authorization key pair)�� Ͻø� �˴ϴ�.

�� ڸ� �� Ű�� ϼž� �մϴ�. �� ǻ�Ϳ� ��Ϸ�� ڸ� �� Ű�� Ͻ÷��, �� ܰ踦 ��ʽÿ�. �� Ʈ�μ� Ű�� Ͻø�, ��Ʈ ��ڸ�� Ű�� ֽ��ϴ�.

OpenSSH 3.0 �� ķ� ~/.ssh/authorized_keys2, ~/.ssh/known_hosts2, /etc/ssh_known_hosts2 �� ʽ��ϴ�. SSH �� 1 �� 2�� ~/.ssh/authorized_keys, ~/.ssh/known_hosts, /etc/ssh/ssh_known_hosts �� մϴ�.

Red Hat Linux 9�� SSH Protocol 2�� RSA Ű�� ⺻�� մϴ�.

	��Ʈ
	Red Hat Linux�� 缳ġ�Ͻô� �� Ű �� ϱ� ��ؼ�� Ȩ ��丮�� ġ�� `.ssh` ��丮�� Ͻʽÿ�. �缳ġ�� Ϸ�Ǹ� �� 丮�� Ȩ ��丮�� մϴ�. ��Ʈ�� Ű �� մϴ�.

15.3.4.1. 2.0 �� Ǵ� RSA Ű �� ϱ�

SSH �� 2.0 �� Ǵ� RSA Ű �� ϱ� ��ؼ�� ܰ踦 ��ʽÿ�. OpenSSH 2.9 �� 2.0 �� SSH �� ⺻�� ˴ϴ�.

2.0 �� ݰ� �Բ� �� RSA Ű �� ϱ� ��ؼ�� Ʈ�� Է��մϴ�:
ssh-keygen -t rsa
~/.ssh/id_rsa�� ⺻ �� ġ�� մϴ�. �� ȣ�ʹ� �ٸ� ��ȣ �� (passphrase)�� Է��Ͻ� �� Ȯ�� ѹ� �� Է�� ֽʽÿ�.
��Ű�� ~/.ssh/id_rsa.pub ��Ͽ� ��ϵǰ� ��Ű�� ~/.ssh/id_rsa ��Ͽ� ��ϵ˴ϴ�. �� Ű�� ٸ� �� ؼ�� ȵ˴ϴ�.
chmod 755 ~/.ssh ��ɾ ��Ͽ� .ssh ��丮�� 㰡�� մϴ�.
~/.ssh/id_rsa.pub �� ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��մϴ�. �� ~/.ssh/authorized_keys �� ʴ� ��, ~/.ssh/id_rsa.pub �� ٸ� ��ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��ϼŵ� �˴ϴ�.
GNOME�� ̶�� 15.3.4.4 �� Ѿ� ��ʽÿ�. X �� ý�� ʴ� ��쿡�� 15.3.4.5 �� Ѿ� ��ʽÿ�.

15.3.4.2. 2.0 �� Ǵ� DSA Ű �� ϱ�

SSH �� 2.0 �� DSA Ű �� ϱ� ��ؼ�� ܰ踦 ��ʽÿ�.

2.0 �� ݰ� �Բ� �� DSA Ű �� ϱ� ��ؼ�� Ʈ�� Է��մϴ�:

ssh-keygen -t dsa

~/.ssh/id_dsa�� ⺻ �� ġ�� մϴ�. �� ȣ�ʹ� �ٸ� ��ȣ �� Է��Ͻ� �� Ȯ�� ѹ� �� Է�� ֽʽÿ�.

	��Ʈ
	��ȣ �� Ǵ� ��ڿ��μ� �ܾ�� ڷ� �̷�� ϴ�. ��ڿ�� ̽�� ִٴ� �� ȣ�� ̰� �ֽ��ϴ�. ��ȣ �� ܾ �ƴ� �ϳ�� ̷�� ȣ�� ϴ�.

��Ű�� ~/.ssh/id_dsa.pub ��Ͽ� ��ϵǰ� ��Ű�� ~/.ssh/id_dsa ��Ͽ� ��ϵ˴ϴ�. �� Ű�� ٸ� �� ؼ�� ȵ˴ϴ�.

chmod 755 ~/.ssh ��ɾ ��Ͽ� .ssh ��丮�� 㰡�� մϴ�.
~/.ssh/id_dsa.pub �� ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��մϴ�. �� ~/.ssh/authorized_keys �� ʴ� ��, ~/.ssh/id_dsa.pub �� ٸ� ��ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��ϼŵ� �˴ϴ�.
GNOME�� ̶�� 15.3.4.4 �� Ѿ� ��ʽÿ�. X �� ý�� ʴ� ��쿡�� 15.3.4.5 �� Ѿ� ��ʽÿ�.

15.3.4.3. 1.3 �� 1.5 �� Ǵ� RSA Ű �� ϱ�

SSH �� 1.0 �� Ǵ� RSA Ű �� ϱ� ��ؼ�� ܰ踦 ��ʽÿ�. �ܼ�� DSA�� ϴ� �ý��۵�� ϴ� �� RSA 1.3 �� RSA 1.5 �� Ű �� ʿ�� ʽ��ϴ�.

RSA (�� 1.3�� 1.5 ��) Ű �� ϱ� ��ؼ�� Ʈ �󿡼� �� Է��Ͻʽÿ�:
ssh-keygen -t rsa1
~/.ssh/identity�� ⺻ �� ġ�� մϴ�. �� ȣ�ʹ� �ٸ� ��ȣ �� Է��Ͻ� �� Ȯ�� ѹ� �� Է�� ֽʽÿ�.
��Ű�� ~/.ssh/identity.pub ��Ͽ� ��ϵǰ� ��Ű�� ~/.ssh/identity ��Ͽ� ��ϵ˴ϴ�. �� Ű�� ٸ� �� ؼ�� ȵ˴ϴ�.
chmod 755 ~/.ssh ��ɾ ��Ͽ� .ssh ��丮�� 㰡�� ϰ� chmod 644 ~/.ssh/identity.pub ��ɾ ��Ͽ� �� Ű�� 㰡�� Ͻñ� �ٶ��ϴ�.
~/.ssh/identity.pub �� ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��մϴ�. �� ~/.ssh/authorized_keys �� ʴ� ��, ~/.ssh/identity.pub �� ٸ� ��ǻ�� ~/.ssh/authorized_keys ��Ϸ� ��ϼŵ� �˴ϴ�.
GNOME�� ̶�� 15.3.4.4 �� Ѿ� ��ʽÿ�. GNOME�� ʴ� ��쿡�� 15.3.4.5 �� Ѿ� ��ʽÿ�.

15.3.4.4. GNOME�� Ͽ� `ssh-agent` ��ϱ�

ssh-agent ��ƿ��Ƽ�� Ͽ� ssh�� scp �� ȣ �� Է�� ʿ䰡 �� ȣ �� ֽ��ϴ�. GNOME�� ϽŴٸ� openssh-askpass-gnome ��ƿ��Ƽ�� ڰ� GNOME�� α�� ȣ �� û�� ڰ� GNOME�� α� �ƿ�� ȣ �� ϴ�. �� GNOME �� ϴ� �� ssh �Ǵ� scp �� Ͽ� ��ȣ�� ȣ �� Է��Ͻ� �ʿ䰡 ��ϴ�. GNOME�� Ŵٸ� 15.3.4.5 �� ʽÿ�.

GNOME �� ϴ� �� ȣ �� ϱ� ��ؼ�� ܰ踦 ��ʽÿ�

openssh-askpass-gnome ��Ű�� ġ�Ǿ� �־�� մϴ�; ��Ű�� ġ�Ǿ� �ִ�� θ� �˾ƺ�� ؼ� rpm -q openssh-askpass-gnome �� մϴ�. �� ġ�Ǿ� �� ʴٸ�, Red Hat CD-ROM ��Ʈ�� Red Hat FTP �̷� ��Ʈ, �Ǵ� Red Hat Network�� Ͽ� �ش� ��Ű�� ġ�Ͻñ� �ٶ��ϴ�.
�гο�� �� ޴� ��ư => ȯ��  => �߰� ȯ��  => ���� Ͻ� �� �� α׷� �� Ŭ��Ͻñ� �ٶ��ϴ�. �߰� ��ư�� Ŭ��Ͻð� ��  �ؽ�Ʈ �Է¶�� /usr/bin/ssh-add�� Է��Ͻʽÿ�. �� ǵ�� ٸ� �� ɺ�� 켱�� ȣ�� մϴ�. ssh-add ��ɿ� �� 켱�� ȣ�� 70 �Ǵ� �� ̻�� ڰ� ��մϴ�. �켱�� ȣ�� , ��Ǵ� �켱�� ϴ�. ��Ͽ� �ٸ� ��α׷�� ִٸ� �� α׷�� 켱�� ־�� մϴ�. �� ��ư�� Ŭ��Ͽ� ��α׷�� մϴ�.
GNOME�� α� �ƿ�� ٽ� GNOME�� α�� Ͻʽÿ�; ��, X�� Ͻʽÿ�. GNOME�� ۵� �� ȣ �� 䱸�ϴ� ��ȭ ��ڰ� ��Ÿ�� Դϴ�. ��ȣ �� Է��Ͻʽÿ�. �� DSA�� RSA Ű �� Ǿ��ٸ�, �� Ű �ֿ� �� ȣ �� û�� Դϴ�. �� ssh, scp, sftp �� Ͻ� �� ȣ�� Է��Ͻ� �ʿ䰡 ��ϴ�.

15.3.4.5. `ssh-agent` ��ϱ�

ssh-agent ��ƿ��Ƽ�� Ͽ� ssh�� scp �� ȣ �� Է�� ʿ䰡 �� ȣ �� ֽ��ϴ�. X �� ý�� ʴ� ��쿡�� Ʈ �󿡼� �� ܰ踦 ��ʽÿ�. �� GNOME�� Ͻô� �� α��ν� ��ȣ�� Է�� ʾƵ� �ǵ�� Ͻ÷�� (15.3.4.4 �� ), Xterm�� ͹̳� â�� ʽÿ�. GNOME�� ƴ� X�� ̶�� ͹̳� â�� ø� �˴ϴ�. �� ȣ �� ü �� ƴϹǷ� �ش� �͹̳� â�� ˴ϴ�.

�� Ʈ�� Է��Ͻʽÿ�:
exec /usr/bin/ssh-agent $SHELL
�� Է��մϴ�:
ssh-add
�׸�� ȣ �� Է��Ͻʽÿ�. �Ѱ� �̻�� Ű �� Ǿ��ٸ�, �� Ű �ֿ� �� ȣ �� 䱸�� Դϴ�.
�α� �ƿ� �Ŀ�� ȣ �� ̻� �� ʽ��ϴ�. �� ֿܼ� �α�� Ǵ� �͹̳� â�� տ�� ޵� �� ϼž� �մϴ�.

15.3. OpenSSH Ŭ���̾�Ʈ ����

15.3.1. ssh ���ɾ� ����ϱ�

15.3.2. scp ���ɾ� ����ϱ�

15.3.3. sftp ���ɾ� ����ϱ�

15.3.4. Ű �� �����ϱ�

15.3.4.1. 2.0 ������ ���Ǵ� RSA Ű �� �����ϱ�

15.3.4.2. 2.0 ������ ���Ǵ� DSA Ű �� �����ϱ�

15.3.4.3. 1.3 �� 1.5 ������ ���Ǵ� RSA Ű �� �����ϱ�

15.3.4.4. GNOME�� ����Ͽ� ssh-agent �����ϱ�

15.3.4.5. ssh-agent �����ϱ�