SSH (Secure shell) Primer & Attacks

I use SSH Command Pretty much everyday. Just want to share some basics of SSH here in my blog

• It’s a communication Protocol
• Traffic is encrypted unlike telnet (Telnet is not encrypted) 
• SSH is the client and SSHD is there server ( Open SSH Daemon)
• SSHD sits and listen for SSH Connection 
• SSHD config file for security hardening

# Authentication Methods:
Command:> ssh john@192.168.2.17 

• Password
• Public/Private Key Pair (Recommended way)
• Host based - file known host

# Generating Keys 
Command:>  ssh-keygen 

• ~/.ssh/id_rsa (Private Key)
• ~/.ssh/id_rsa.pub (Public Key)

Public key goes into server “Authorized_keys” file 

# Invalidate SSH certificates?

• ssh-add -D