Activating the SSH Server

Previous page
Table of content
Next page
Activating the SSH Server

Mac OS X comes with the sshd server, which provides secure login capability using the SSH (Secure Shell) protocol. We covered SSH in some detail in Chapters 10 ("Connecting over the Internet") and 12 ("Security"). In an SSH connection, all traffic between client and server is encrypted. Activating the SSH server enables other machines to connect to yours over the Internet using the SSH protocol. Review Chapter 10 for more on using ssh , scp , sftp , and other SSH-based tools.

You can activate and deactivate the SSH server by going to the Sharing pane of System Preferences, clicking the Services tab, and selecting or deselecting the Remote Login box, but here's the Unix way (actually, this is the Darwin waymost other Unix systems would use a different series of steps).

The SSH server listens on port 22. If you are using firewall software, make sure that access to port 22 is not blocked.

To activate the SSH server:

  • sudo launchctl load -w

    /System/Library/LaunchDaemons/ssh.

    plist

    That's it. The SSH daemon ( sshd ) will now listen for incoming connections on port 22.

    Review Chapter 11 for more on the launchctl utility. And, of course, read the man page for launchctl .

Tips

  • In Mac OS X 10.3 the SSH daemon was run using the xinetd daemon. The configuration file was /etc/xinetd.d/ssh , and you could change the

    disable = yes

    line to

    disable = no

    and then do 

     sudo kill -HUP `cat/var/run/xinetd.  pid`

    (note that those are backquotes [ ` ], not apostrophes [']).

  • In Mac OS X 10.2 and earlier, sshd was controlled by a StartupItem similar to the AppleShare StartupItem covered in tasks above, and so in 10.2 and 10.1 you can use the same approach for sshd that we showed you for the AppleFileServer.

  • Incoming SSH connections are logged to /var/log/secure.log .


To shut down the SSH server from the command line:

  • sudo launchctl unload -w /System/

    Library/LaunchDaemons/ssh.plist

    That should stop sshd and prevent it from starting up on reboot.

Tips

  • Be careful about doing this when logged in using SSH! Your current connection will continue to work, but you will not be able to start a new one.

  • In Mac OS X 10.3 you can stop sshd by editing /etc/xinetd.d/ssh and setting the disable property to yes , and then doing 

     sudo kill -HUP `cat /var/run/xinetd.  pid`

  • In Mac OS X10.2 you can use an approach similar to the one described earlier in this chapter for AppleShare. The SSH StartupItem in 10.2 is /System/Library/StartupItems/SSH/SSH , and the entry in /etc/hostconfig is SSHSERVER .



Previous page
Table of content
Next page
Unix for Mac OS X 10. 4 Tiger. Visual QuickPro Guide
Unix for Mac OS X 10.4 Tiger: Visual QuickPro Guide (2nd Edition)
ISBN: 0321246683
EAN: 2147483647
Year: 2004
Pages: 161
Authors: Matisse Enzer
BUY ON AMAZON
Strategies for Information Technology Governance
Oracle Developer Forms Techniques
Cisco IP Communications Express: CallManager Express with Cisco Unity Express
Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More
The Lean Six Sigma Pocket Toolbook. A Quick Reference Guide to Nearly 100 Tools for Improving Process Quality, Speed, and Complexity
Quantitative Methods in Project Management
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy