ºìÁªLinuxÃÅ»§
Linux°ïÖú

Ò»´ÎÐÔ¿ÚÁîopie£¨FreeBSD£©

·¢²¼Ê±¼ä:2006-04-02 00:36:19À´Ô´:ºìÁª×÷Õß:thej
ÒýÓÃ:
¿ÚÁîÓþÃÁË£¬¾Í¿ÉÄÜй¶£¬ËùÒÔ¾ÍÓÐÁËÒ»´ÎÐÔ¿ÚÁÓÃÍê¾ÍûÓÃÁË¡£ÓÐûÓÐÏë¹ýÇ¿»¯Ò»ÏÂÄãµÄsshµÇ½ÄØ£¿
Ô­Àí£º·þÎñÆ÷ά»¤Ò»¸ö²»¶Ï±ä»¯µÄ¿ÚÁîÁÐ±í£¬Õâ¸öÁбíÊÇËã³öÀ´µÄ¡£Äãÿ´ÎÓÃÒ»¸ö¿ÚÁÓÃʲô¿ÚÁîÊÇÔ¤¶¨ºÃµÄ£¬Óùý¾ÍʧЧ£¬ÂÖµ½ÏÂÒ»¸ö¿ÚÁîÄã²»±Ø·Ç¼Çסÿ¸ö¿ÚÁµÇ½ʱ£¬ÏµÍ³»á¸øÄãÌáʾ£¬¸ù¾ÝÌáʾ£¬ÔÙ¸ù¾ÝÄãÊÂÏÈÖªµÀµÄÒ»¸öÃÜÂ룬ÔÚ°²È«µÄ¿Í»§¶ËËã³ö¿ÚÁÔÙÓÃÆäµÇ½¡£

²½Ö裺
1.³õʼ»¯£ºÐèÒª³õʼ»¯ÒªµÇ½µÄϵͳµÄ¿ÚÁîÐòÁУº
ÔÚÄãҪʹÓõÄÕÊ»§µÄÌáʾ·ûÏ£º
%opiepasswd -c -n 1000
Adding eliumao:
Only use this method from the console; NEVER from remote. If you are using
telnet, xterm, or a dial-in, type ^C now or exit with no password.
Then run opiepasswd without the -c parameter.
Using MD5 to compute responses.
Enter new secret pass phrase:xxxxx
Again new secret pass phrase:xxxxx
ID eliumao OTP key is 1000 el6652
LOB COCO DISK FAIN CRAG CAM
ÆäÖеÚÒ»ÐÐÖУ¬-cÊÇ´´½¨»ò³õʼ»¯µÄÒâ˼£¬-nºóÃæÓиöÊý×Ö£¬ÊÇÄãÒª´´½¨µÄ¿ÚÁîÐòÁеij¤¶È£¬ÓÃÍ껹ҪÖØгõʼ»¯¡£Ä¬ÈÏÊÇ500¸ö¡£
µÚÆßÐУ¬ÊäÈëÄãµÄÃÜÂ룬Õâ¸öÃÜÂëÊÇÓÃÀ´ÒÔºó¸ù¾ÝϵͳÌáʾËãÃÜÂëµÄ£¬»òÓÃÀ´ÖØгõʼ»¯¡£ÃÜÂ븴ÔÓЩûÓлµ´¦¡£
µÚ°ËÐУ¬ÔÙÊäÈëÒ»±éÃÜÂë¡£
³É¹¦¡£
Ï´ÎÏëÐ޸ĵĻ°£¬Ö±½ÓÓò»´ø-cµÄÃüÁî¾ÍºÃÁË¡£
2.ÅäÖÃsshd_configʹsshʹÓÃopieµÄ·½Ê½ÑéÖ¤¿ÚÁî
(×¢Ò⣬Èç¹ûÄãÓõÄÊÇ6.0,ÄÇô¾Í²»ÓõÚ2²½µÄÅäÖÃÁË!!!!!)
sshd_program="/usr/local/sbin/sshd
/etc/ssh/sshd_config
--------------------------------------
ChallengeResponseAuthentication yes #ÕâÒ»Ðв»ÒªÊÇno£¬Ä¬ÈÏÊÇyes
--------------------------------------
3.ÅäÖÃPAM
(Èç¹ûÄãÓõÄÊÇ6.0,ÄÇô¾Í²»ÓõÚ3²½µÄÅäÖÃÁË£¬Ïà¹ØÅäÖÃÎļþµÄλÖÃ/etc/pam.d/sshd!!!!!)
--------------------------------------------------------------------------------
# OpenSSH with PAM support requires similar modules. The session one is
# a bit strange, though...
---------------------------------------------------------------------------------
×¢Ò⣬µÚÈýÐУ¬ÎÒÆÁ±ÎµôÁËskey·½Ê½
µÚËÄÐУ¬ÎÒÉèÖóÉʹÓÃopieÈÏÖ¤¾Í×ã¹»ÁË
µÚÎåÐУ¬ÎÒÉèÖóÉopieÈÏ֤ͨ¹ýÊDZØÐëµÄ£¬Èç¹ûÄ㻹ϣÍûͨ¹ýÆÕͨ¿ÚÁUNIXϵͳ¿ÚÁµÇ½£¬¾Í²»ÒªÕâÒ»ÐС£
OK£¬´ó¹¦¸æ³É
4.ÊÔÊÔ¿´
otp-md5 451 gw0965 ext
Password:
ÕâÀïµÄpasswordÊÇÕâÑùËãµÄ£¬ÔÚ±¾µØÔËÐÐ
%opiekey 451 gw0965
Using the MD5 algorithm to compute response.
Reminder: Don't use opiekey from telnet or dial-in sessions.
Enter secret pass phrase:xxxxxxx
REIN BONN WAYS FILL CALF BRAD
×¢Ò⣬µÚÒ»ÐУ¬opiekeyÃüÁîµÄ²ÎÊý¾ÍÊÇsshʱÕâÒ»ÐУ¨otp-md5 451 gw0965 ext£©µÃµ½µÄ¡£
µÚËÄÐУ¬ÊäÈë²½Öè1ʱÄǸösecret pass phrase¡£
×îºóÒ»ÐУ¬µÃµ½µÄ¾ÍÊǵǽҪÓõĿÚÁî¡£
5.×¢ÒâÊÂÏî
ÏÔÈ»£¬²½Öè1µÄÄǸö¿ÚÁîµÄ°²È«Ê®·ÖÖØÒª¡£²úÉúʱ£¬×îºÃͨ¹ý°²È«µÄÁ¬½Ó»îןɴà¾ÍÔÚ·þÎñÆ÷±¾µØ¡£ËãÒ»´ÎÐÔ¿ÚÁîʱ£¬Ò²Òª×¢ÒâÊÇÔÚ°²È«µÄÖÕ¶ËÉÏ¡£
ÎÄÕÂÆÀÂÛ

¹²ÓÐ 0 ÌõÆÀÂÛ