Yadda ake Cire Haɗin Haɗin SSH mara aiki ko mara aiki a cikin Linux

A cikin labarinmu da ya gabata, inda muka yi bayanin yadda ake TMOUT mai canzawa zuwa harsashi na Linux ta atomatik lokacin da babu wani aiki. A cikin wannan labarin, zamuyi bayanin yadda ake cire haɗin kai tsaye ko zaman SSH mara aiki ko haɗin kai a cikin Linux.

Wannan shine kawai ɗayan ayyuka da yawa don toshe damar SSH da FTP zuwa takamaiman IP da kewayon cibiyar sadarwa a cikin Linux, don ƙara ƙarin tsaro.

Cire Haɗin kai Zama SSH mara aiki a cikin Linux

Don cire haɗin zaman SSH marasa aiki ta atomatik, zaku iya amfani da waɗannan zaɓuɓɓukan daidaitawar sshd.

  • ClientAliveCountMax - yana bayyana adadin saƙonnin (saƙonni masu rai) da aka aika zuwa abokin ciniki na ssh ba tare da sshd yana karɓar saƙon baya daga abokin ciniki ba. Da zarar an kai wannan iyaka, ba tare da abokin ciniki ya amsa ba, sshd zai ƙare haɗin. Tsohuwar ƙimar ita ce 3.
  • ClientAliveInterval – yana bayyana tazarar lokacin ƙarewa (a cikin daƙiƙa) bayan haka idan ba a sami saƙo daga abokin ciniki ba, sshd zai aika da saƙo ga abokin ciniki yana buƙatar amsawa. Tsohuwar ita ce 0, ma'ana cewa waɗannan saƙonnin ba za a aika ga abokin ciniki ba.

Don saita shi, buɗe babban fayil ɗin sanyi na SSH /etc/ssh/sshd_config tare da zaɓin editan ku.

# vi /etc/ssh/sshd_config

Ƙara waɗannan layi biyu masu biyo baya, wanda ke nufin zai cire haɗin abokin ciniki bayan kusan mintuna 3. Yana nufin cewa bayan kowane sakan 60, ana aika saƙon abokin ciniki mai rai ( jimlar 3 saƙon rai na abokin ciniki za a aika), wanda ya haifar da 3*60=180 seconds (minti 3).

ClientAliveInterval 60
ClientAliveCountMax 3

Bayan yin canje-canje, tabbatar da sake kunna sabis na SSH don ɗaukar sabbin canje-canje zuwa aiki.

# systemctl restart sshd   [On Systemd]
# service sshd restart     [On SysVinit]

Shi ke nan! A ƙasa akwai jerin jagororin SSH masu amfani, waɗanda zaku iya karantawa:

  1. Yadda ake Siffata Haɗin SSH na Musamman don Sauƙaƙe Samun Nisa
  2. ssh_scan - Yana Tabbatar da Kanfigareshan Sabar SSH da Manufofin ku a cikin Linux
  3. Ƙuntata Samun Mai Amfani na SSH zuwa Takaitaccen Bayani Ta Amfani da Chrooted Jail

Lallai ya zama dole a cire haɗin zaman SSH mara aiki ta atomatik saboda wasu dalilai na tsaro. Don raba kowane tunani ko yin tambaya, yi amfani da fam ɗin sharhin da ke ƙasa.