Beruflich Dokumente
Kultur Dokumente
The best resource to help you begin setting up an ssh service on a Host
machine using Ubuntu is OpenSSH Server. This will allow you to use SSH
File Transfer Protocol (also Secure File Transfer Protocol, or SFTP) to
access, transfer, and manage files over SSH from a Client machine.
Overview of Solution
On Ubuntu you can setup an OpenSSH server on a Host machine and a
user can then use ssh to connect from Client to Host's server using only
a username and password. Note, however, that public key
authentication is recommended,
Give your Host a Static IP address so you can reliably connect to it:
nm-connection-editor
"Once you've backed up your sshd_config file, you can make changes with
any text editor, for example:"
You must restart your ssh service on Host for these changes to take effect
Choose non-standard SSH port: Comment out Port 22; add Port <new-port-
number> to Host's /etc/ssh/sshd_config
Allow only local connections: Add ListenAddress 192.168.0.10
Allow certain users on certain ports: Add AllowUsers
<username>@<IP_address_1> <username>@<IP_address_2> or AllowUsers
/etc/ssh/sshd_config
Find the line with the phrase PasswordAuthentication and make it read:
PasswordAuthentication yes
Save your new sshd_config file and then restart Host's ssh service:
Note the port Host's ssh service listens to in the sshd_config file and setup your
router to forward TCP/UDP traffic aimed at this port to the IP address of
your OpenSSH server.
Typically, you can point your web browser to 192.168.1.1 in order to login
to your router and setup port forwarding. See Configure OpenSSH
server and router to accept SSH connection over internet?
sftp <username>@123.123.1.23
If you changed the port number Host's OpenSSH server listens to,
do:
ssh <username>@123.123.1.23
If you changed the port number Host's OpenSSH server listens to,
do:
In 14.04:
Proper file permissions in place on Host guarantee that each standard user
(without sudo privileges) that you create on Host will own their /home/new_user
directory but have limited permissions with the rest of the directory
structure.
Limited permissions does not necessarily mean they are unable to view
filenames and directory structure.