Hagaha Dhamaystiran ee Isticmaalka SSH ee PowerShell: Iskudubarid iyo Tusaalayaal Dhaqan ah

Awooda Si toos ah ugu xidh SSH PowerShell ha dejado de ser una tarea reservada a gurús de la administración. Hoy en día cualquier usuario de Windows puede acceder, administrar servidores e incluso automatizar tareas a través de una terminal SSH way ku mahadsan tahay is dhexgalka asalka ah ee gudaha Windows 10 iyo ka dib. Jidka loo maro ma aha oo kaliya mid ka fudud sidii hore, laakiin sidoo kale waxaa lagu sifeeyay dhinaca xasiloonida iyo amniga, taas oo ka dhigaysa beddel adag oo ka duwan macaamiisha caadiga ah ee dibadda.

Haddi aad waligaa u baahatay inaad maamusho nidaamka fog, koobi garayso, dib u eeg abuse o orod amarada on server ah Linux ama Daaqadaha adigoon ka tagin miiskaaga, tilmaantan faahfaahsan waxay u adeegi doontaa tixraac ahaan. Waxaad wax walba ka baran doontaa shuruudaha, rakibaadda, iyo qaabaynta OpenSSH ee meelo kala duwan ilaa tusaalayaal wax ku ool ah oo ah labada amarrada aasaasiga ah iyo sifooyinka sare ee PowerShell SSH si aad uga faa'iidaysato maamulka fog.

Waa maxay SSH iyo sababta looga isticmaalo PowerShell?

SSH (Secure Shell) waa hab-maamuus isgaarsiineed oo sugan kaasoo kuu ogolaanaya inaad gasho oo aad maamusho nidaamyada fog adigoo isticmaalaya terminal.. Faa'iidada ugu weyn ee borotokoolka kale sida Telnet waa encryption dhamaadka-ilaa-dhamaadka, kaas oo hubinaya in dhammaan macluumaadka, oo ay ku jiraan isticmaalayaasha iyo furayaasha sirta ah, ay si buuxda u safraan.

PowerShell, dhanka kale, waa konsoole sare ee taliska Windows, loo isticmaalo adeegsadaha iyo hawlaha maamulka labadaba. Dhawr sano hadda, Windows waxa ay ku soo dartay macmiilka SSH ee u dhashay, taas oo kuu oggolaanaysa in aad si buuxda uga faa'iidaysato awoodda SSH si toos ah PowerShell, taas oo sahlaysa oo ammaan u ah maaraynta Linux, Windows, iyo aaladaha kale ee fogfog.

Shuruudaha isticmaalka SSH ee PowerShell

Kahor intaadan bilaabin maareynta nidaamyada fog ee PowerShell, waxaad u baahan tahay inaad hubiso qaar ka mid ah shuruudaha aasaasiga ah ee kumbuyuutarkaaga iyo kumbuyuutarka bartilmaameedka ah:

• PowerShell waa la cusboonaysiiyay: Waxaa lagu talinayaa in la isticmaalo PowerShell 6 ama ka dib si aad uga faa'iidaysato dhammaan sifooyinka. Gudaha Windows 10 iyo 11 waxay ku yimaadaan horay loo rakibay, laakiin waa fikrad wanaagsan inaad ku hubiso nooca amarka $PSVersionMiiska.PSVersion.
• Furaha Macmiilka SSH: Waxaad u baahan tahay in lagu rakibo macmiilka OpenSSH Laga bilaabo Windows 10 (dhiso 1809) iyo Windows Server 2019, waxay ku jirtaa qaab ikhtiyaari ah, in kasta oo aad gacanta ku rakibi karto haddii loo baahdo.
• Seerarka SSH waxa uu ku shaqeeyaa kombuyuutarka fog: Nidaamka aad ku xidhi doonto waa inuu lahaadaa SSH (tani waxay noqon kartaa mishiin Linux ah, mashiinka Windows, aaladda shabakad, iwm.).
• Helitaanka shabakada Kumbuyuutarka aad ku xiran tahay waa inuu awood u yeeshaa inuu gaaro server-ka SSH IP ama domain, waxaana muhiim ah in dekedda 22 ay ku furan tahay dabkaaga.
• Ogolaanshaha isticmaalaha: Iyadoo maamule laga yahay had iyo jeer ma aha lagama maarmaan, xaalado badan waxaad u baahan doontaa rukhsad sare si aad u rakibto sifooyinka ama u gasho nidaamyada fog.

Hubi rakibidda OpenSSH iyo nooca Windows

Si aad u hubiso inaad haysatid macmiilka OpenSSH ee laga heli karo nidaamkaaga, fur PowerShell oo orod:

Get-WindowsCapability -Online | Where-Object Name -like 'OpenSSH*'

Waxaad arki doontaa heerka la rakibay (Rakibay) ama aan la joogin (NotPresent) ee macmiilka iyo server-ka labadaba. Haddii aan la rakibin, waxaad ku dari kartaa:

Add-WindowsCapability -Online -Name OpenSSH.Client~~~~0.0.1.0

Seerfarka haddii aad rabto inaad awood u yeelato helitaanka xidhiidhada SSH ee kumbuyuutarkaaga:

Add-WindowsCapability -Online -Name OpenSSH.Server~~~~0.0.1.0

Marka la rakibo, waxaad awoodi doontaa inaad si toos ah u isticmaasho amarka 'ssh' PowerShell ama Command Prompt.

Ku habeyn oo ka bilow adeegga SSH Windows

Haddii aad doonayso inaad aqbasho isku xirka SSH ee Windows, waxaad u baahan doontaa inaad hubiso in adeega la bilaabay. Si aad u bilowdo oo aad u habayso in uu si toos ah u bilaabo mar kasta oo aad boot system-ka, orod:

Start-Service sshd
Set-Service -Name sshd -StartupType 'Automatic'

Waxaa lagu talinayaa in la ansixiyo in sharciga dab-damiska uu horey u jiray kaasoo u oggolaanaya gaadiidka ka soo galaya dekedda 22 (SSH):

if (!(Get-NetFirewallRule -Name "OpenSSH-Server-In-TCP" -ErrorAction SilentlyContinue | Select-Object Name, Enabled)) {
 Write-Output "Firewall Rule 'OpenSSH-Server-In-TCP' does not exist, creating it..."
 New-NetFirewallRule -Name 'OpenSSH-Server-In-TCP' -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22
} else {
 Write-Output "Firewall rule 'OpenSSH-Server-In-TCP' has been created and exists."
}

Bilaabida: Ku xidhida SSH ee PowerShell

Markaad wax walba diyaariso, waxaad ku bilaabi kartaa fadhiga SSH adoo wata amar fudud oo PowerShell ah:

ssh usuario@servidor

Xusuusnow inaad ku beddesho 'user' magacaaga isticmaale ee mashiinka fog iyo 'server' magaca IP ama DNS. Markaad socodsiiso, waxay ku weydiin doontaa inaad aqbasho furaha martida loo yahay (markii ugu horreysay) iyo erayga sirta ah.

Tusaalaha dhabta ah ee ku xidhan serverka Linux:

ssh root@192.168.1.100

Waxa kale oo aad ku xidhi kartaa nidaamyada kale ee Windows oo wata adeegaha SSH ee firfircoon, ama aaladaha shabakada ku habboon.

Halbeegyada sareeyo iyo xaqiijinta furaha

SSH waxay kuu ogolaanaysaa dabacsanaan badan sida aad u xaqiijinayso iyo sida aad u samaysato xidhiidh. Halbeegyada ugu caansan waa:

• -i Si aad u qeexdo furaha gaarka ah ee xaqiijinta furaha sirta ah: ssh -i ruta/claves/id_rsa usuario@servidor
• -p Si loo qeexo deked aan ahayn 22: ssh -p 2222 usuario@servidor
• -v qaabka hadalka, faa'iido u leh qaladka.

Gudaha PowerShell, waxaad isticmaali kartaa furayaasha lagu soo saaray ssh-keygen oo ku koobi kara server-ka fog si loogu daro ammaan iyo raaxaysi, adigoo iska ilaalinaya furayaasha sirta ah.

Maamul oo otomaatig ugu samee fadhiyada sare ee SSH PowerShell

Marka laga soo tago amarka aasaasiga ah, PowerShell waxay ku daraysaa cmdlets horumarsan si ay ula shaqeeyaan fadhiyada SSH sida Fadhi-PSCusub, Gali-PSSession oo u yeedhi-Amar. Tani waxay kor u qaadaysaa maamulka fog, taasoo kuu ogolaanaysa inaad otomaatig u sameyso qoraallada iyo hawlaha dayactirka iyada oo aan loo baahnayn gelitaanka gacanta mar kasta.

• Kulanka Cusub-PSS wuxuu kuu ogolaanayaa inaad abuurto fadhi fog oo cusub adoo cayimaya martigeliyaha, isticmaalaha iyo erayga sirta ah ama furaha dadweynaha.
• Gali-PSSession Waxay kuu oggolaaneysaa inaad si is dhexgal ah u gasho fadhi fog, adoo fulinaya amarada sidii adigoo jir ahaan ku sugan kombuyutarka kale.
• Talo-qaadasho fuliyaa amarada ama blocks script fog, ku haboon maamulka guud ama hawlo toos ah.

Tusaale in la bilaabo fadhiga:

New-PSSession -HostName 192.168.1.100 -UserName admin

Si aad u gasho fadhiga la abuuray:

Enter-PSSession -Session $session

Waxaad wareejin kartaa faylasha, la socoshada hababka, otomaatig ah hawlaha, iyo in ka badan, dhammaan ku habboonaanta PowerShell.

Ku habee Serverka SSH Linux iyo macOS ee Xiriirinta PowerShell

Kaliya maaha inaad ku maamuli karto kumbuyuutarrada Windows PowerShell, laakiin sidoo kale waxaad geli kartaa Linux iyo server-yada macOS. Kumbiyuutarradan, waxaad u baahan doontaa inaad hubiso in adeegga OpenSSH uu ku rakiban yahay oo uu socdo. Tani waa sida loogu sameeyo Linux (tusaale ahaan Ubuntu):

sudo apt install openssh-client
sudo apt install openssh-server

Si loo hubiyo inay firfircoon tahay:

sudo systemctl status sshd

On macOS, si fudud awood u geli ka fogaanshaha 'Shareing' - 'Remote Login' ee goobaha nidaamka.

Labada xaaladoodba, waxaad tafatir kartaa faylka sshd_config si aad ugu oggolaato erayga sirta ah ama aqoonsiga furaha dadweynaha, oo xitaa u deji PowerShell sida qolofka caadiga ah.

Amarada SSH ee waxtarka leh ee ka yimid PowerShell

Marka la isku xiro, waxaa suurtagal ah in la fuliyo amarrada nidaamka fog ee kala duwan. Qaar ka mid ah tusaalooyinka waxtarka leh ee maaraynta maalinlaha ah:

• ls / dir: qor waxa ku jira hagaha
• cd: beddel hagaha
• taabo / New-Wax: wuxuu abuuraa faylal cusub
• rm / Ka saar-Shayga: wuxuu tirtiraa faylasha ama galka
• mv / Dhaq-dhaqaaq: guurto ama beddelo faylasha
• scp: u kala wareejiya faylasha u dhexeeya macmiilka iyo serverka
• adeegradd: ku dar isticmaalayaasha

Awaamiirtan ayaa awood u siinaya maamul dhamaystiran, iswada, iyo qorista hawlaha soo noqnoqda ama kaabayaasha qalafsan.

Habaynta horumarsan iyo habaynta kalfadhiyada SSH gudaha PowerShell

PowerShell SSH waxay bixisaa doorashooyin badan oo horumarsan si loo habeeyo khibrada si loogu waafajiyo baahiyahaaga:

• Tafatir feylka qaabeynta gudaha $env:ProgramData\ssh\sshd_config si loo hagaajiyo xaqiijinta, algorithms, xeerarka, iyo in ka badan.
• Oggolow ama ku xannib gelitaanka erayga sirta ah ama furaha dadweynaha marka loo eego baahida amni.
• Ku dar nidaamyada hoosaadka sida PowerShell si aad u hesho fadhiyo fogfog si toos ah uga bilaabma PowerShell iyadoo la isticmaalayo 'Subsystem powershell c:/progra~1/powershell/7/pwsh.exe -sshs -nologo'.
• Dib u bilow adeegyada oo hagaaji doorsoomayaasha deegaanka si wax walba ay si sax ah ugu shaqeeyaan.