Журнал лабораторных работ

09:48:42

#apt-get install whois

Чтение списков пакетов... Готово
Построение дерева зависимостей
Чтение информации о состоянии... Готово
НОВЫЕ пакеты, которые будут установлены:
  whois
обновлено 0, установлено 1 новых пакетов, для удаления отмечено 0 пакетов, и 25 пакетов не обновлено.
Необходимо скачать 56,1kБ архивов.
После данной операции, объём занятого дискового пространства возрастёт на 332kB.
Получено:1 http://10.0.35.1 sid/main whois 4.7.33 [56,1kB]
Получено 56,1kБ за 0s (2872kБ/c)
Выбор ранее не выбранного пакета whois.
(Чтение базы данных ... на данный момент установлено 55211 файлов и каталогов.)
Распаковывается пакет whois (из файла .../archives/whois_4.7.33_i386.deb)...
Обрабатываются триггеры для man-db ...
Настраивается пакет whois (4.7.33) ...

09:48:54

#whois

Использование: whois [ОПЦИЯ]... ОБЪЕКТ...
-l                     одноуровневый минимальный поиск [только RPSL]
-L                     найти всё при минимуме указанных совпадений
-m                     найти первый уровень при максимуме указанных совпадений
-M                     найти всё при максимуме указанных совпадений
-c                     найти наименьшее совпадение, содержащее атрибут mnt-irt
-x                     точное совпадение [только RPSL]
-d                     возвращать также реверсные делегированные объекты DNS [только RPSL]
-i АТР[,АТР]...        выполнить инверсный поиск для указанных АТРибутов
-T ТИП[,ТИП]...        поиск только объектов с типом ТИП
...
-s ИСТОЧНИК[,ИСТОЧНИК]... искать в базе ИСТОЧНИКА
-g ИСТОЧНИК:ПЕРВЫЙ-ПОСЂ ПЕРВОГО до ПОСблон для объекта с типом ТИП ('all' для списка)
-v ТИП                 запросить расширенный шаблон для объекта с типом ТИП
-q [version|sources|types]  запросить указанную информацию о сервере [только RPSL]
-F                     быстрый сырой вывод (включает также -r)
-h УЗЕОРТ                присоединиться к ПОРТУ
-H                     скрыть легальные отказы
      --verbose        разъяснять, что происходит
      --help           отобразить эту помощь и выйти
      --version        вывести информацию о версии и выйти

09:48:56

#whois -l

Использование: whois [ОПЦИЯ]... ОБЪЕКТ...
-l                     одноуровневый минимальный поиск [только RPSL]
-L                     найти всё при минимуме указанных совпадений
-m                     найти первый уровень при максимуме указанных совпадений
-M                     найти всё при максимуме указанных совпадений
-c                     найти наименьшее совпадение, содержащее атрибут mnt-irt
-x                     точное совпадение [только RPSL]
-d                     возвращать также реверсные делегированные объекты DNS [только RPSL]
-i АТР[,АТР]...        выполнить инверсный поиск для указанных АТРибутов
-T ТИП[,ТИП]...        поиск только объектов с типом ТИП
...
-s ИСТОЧНИК[,ИСТОЧНИК]... искать в базе ИСТОЧНИКА
-g ИСТОЧНИК:ПЕРВЫЙ-ПОСЂ ПЕРВОГО до ПОСблон для объекта с типом ТИП ('all' для списка)
-v ТИП                 запросить расширенный шаблон для объекта с типом ТИП
-q [version|sources|types]  запросить указанную информацию о сервере [только RPSL]
-F                     быстрый сырой вывод (включает также -r)
-h УЗЕОРТ                присоединиться к ПОРТУ
-H                     скрыть легальные отказы
      --verbose        разъяснять, что происходит
      --help           отобразить эту помощь и выйти
      --version        вывести информацию о версии и выйти

/dev/pts/4

09:50:14

#ssh root@10.0.35.100

root@10.0.35.100's password:
Linux linux0 2.6.18-6-xen-686 #1 SMP Sun Feb 10 22:43:13 UTC 2008 i686
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Wed Jun  3 10:03:58 2009 from linux8.unix.nt
l3-agent is already running: pid=1854; pidfile=/root/.lilalo/l3-agent.pid

/dev/pts/1

09:50:54

#whois 189.17.110.2

% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries
% Brazilian resource: whois.registro.br
% Copyright (c) Nic.br
%  The use of the data below is only permitted as described in
%  full by the terms of use (http://registro.br/termo/en.html),
%  being prohibited its distribution, comercialization or
%  reproduction, in particular, to use it for advertising or
%  any similar purpose.
%  2009-06-03 03:51:39 (BRT -03:00)
...
e-mail:      vitor@jknet.com.br
created:     20050308
changed:     20061003
% Security and mail abuse issues should also be addressed to
% cert.br, http://www.cert.br/, respectivelly to cert@cert.br
% and mail-abuse@cert.br
%
% whois.registro.br accepts only direct match queries. Types
% of queries are: domain (.br), ticket, provider, ID, CIDR
% block, IP and ASN.

09:51:39

#whois 190.208.19.230

% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
%  The data below is provided for information purposes
%  and to assist persons in obtaining information about or
%  related to AS and IP numbers registrations
%  By submitting a whois query, you agree to use this data
%  only for lawful purposes.
%  2009-06-03 03:52:45 (BRT -03:00)
...
e-mail:      netadmin@IP.TELMEXCHILE.CL
address:     Rinconada el Salto, 202, Huechuraba
address:     -- - Santiago -
country:     CL
phone:       +56 2 5825365 []
created:     20030314
changed:     20070417
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.

/dev/pts/6

09:51:48

#whois 189.17.110.2

% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries
% Brazilian resource: whois.registro.br
% Copyright (c) Nic.br
%  The use of the data below is only permitted as described in
%  full by the terms of use (http://registro.br/termo/en.html),
%  being prohibited its distribution, comercialization or
%  reproduction, in particular, to use it for advertising or
%  any similar purpose.
%  2009-06-03 03:51:51 (BRT -03:00)
...
e-mail:      vitor@jknet.com.br
created:     20050308
changed:     20061003
% Security and mail abuse issues should also be addressed to
% cert.br, http://www.cert.br/, respectivelly to cert@cert.br
% and mail-abuse@cert.br
%
% whois.registro.br accepts only direct match queries. Types
% of queries are: domain (.br), ticket, provider, ID, CIDR
% block, IP and ASN.

09:51:52

#whois 190.208.19.230

% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
%  The data below is provided for information purposes
%  and to assist persons in obtaining information about or
%  related to AS and IP numbers registrations
%  By submitting a whois query, you agree to use this data
%  only for lawful purposes.
%  2009-06-03 03:52:14 (BRT -03:00)
...
e-mail:      netadmin@IP.TELMEXCHILE.CL
address:     Rinconada el Salto, 202, Huechuraba
address:     -- - Santiago -
country:     CL
phone:       +56 2 5825365 []
created:     20030314
changed:     20070417
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.

/dev/pts/1

09:52:45

#host ukrtelecom.ua

ukrtelecom.ua           A       195.5.46.19

/dev/pts/6

09:54:05

#whois 195.5.46.19

% This is the RIPE Whois query server #2.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: This output has been filtered.
%       To receive output for a database update, use the "-B" flag
% Information related to '195.5.46.0 - 195.5.46.255'
inetnum:        195.5.46.0 - 195.5.46.255
netname:        UKRTELNET
...
phone:          +380 (44) 230-9024
nic-hdl:        ARM42-RIPE
mnt-by:         AS6849-MNT
source:         RIPE # Filtered
% Information related to '195.5.32.0/19AS6849'
route:        195.5.32.0/19
descr:        AGGREGATE BLOCK FOR UKRTELECOM.
origin:       AS6849
mnt-by:       AS6849-MNT
source:       RIPE # Filtered

/dev/pts/1

09:54:17

#whois 195.5.46.19

% This is the RIPE Whois query server #1.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: This output has been filtered.
%       To receive output for a database update, use the "-B" flag.
% Information related to '195.5.46.0 - 195.5.46.255'
inetnum:        195.5.46.0 - 195.5.46.255
netname:        UKRTELNET
...
phone:          +380 (44) 230-9024
nic-hdl:        ARM42-RIPE
mnt-by:         AS6849-MNT
source:         RIPE # Filtered
% Information related to '195.5.32.0/19AS6849'
route:        195.5.32.0/19
descr:        AGGREGATE BLOCK FOR UKRTELECOM.
origin:       AS6849
mnt-by:       AS6849-MNT
source:       RIPE # Filtered

/dev/pts/6

09:55:38

#route_to()

> {
> whois $1 | grep route | awk '{print $2}'
> }

/dev/pts/1

09:55:44

#whois 195.5.46.19 | grep route | awk '{print $2}'

195.5.32.0/19

/dev/pts/6

09:55:55

#route_to 195.5.46.19

195.5.32.0/19

/dev/pts/1

09:55:57

#last

root     pts/6        10.0.35.100      Wed Jun  3 09:51   still logged in
user     tty7         :0               Wed Jun  3 09:29   still logged in
reboot   system boot  2.6.29-2-686     Wed Jun  3 09:29 - 09:58  (00:28)
user     tty7         :0               Tue Jun  2 18:26 - down   (00:24)
user     tty1                          Tue Jun  2 17:45 - down   (01:04)
user     tty1                          Tue Jun  2 17:45 - 17:45  (00:00)
root     tty1                          Tue Jun  2 17:41 - 17:45  (00:03)
root     tty1                          Tue Jun  2 17:41 - 17:41  (00:00)
root     pts/11       linux15.unix.nt  Tue Jun  2 17:14 - 17:17  (00:03)
root     pts/8        linux3.unix.nt   Tue Jun  2 16:45 - 16:45  (00:00)
...
root     pts/6        192.168.101.2    Tue Jun  2 10:13 - 10:15  (00:01)
user     tty7         :0               Tue Jun  2 09:29 - 18:26  (08:56)
reboot   system boot  2.6.29-2-686     Tue Jun  2 09:29 - 18:50  (09:21)
root     tty1                          Mon Jun  1 17:36 - down   (00:00)
root     tty1                          Mon Jun  1 17:36 - 17:36  (00:00)
user     tty7         :0               Mon Jun  1 16:44 - down   (00:52)
reboot   system boot  2.6.29-2-686     Mon Jun  1 16:44 - 17:37  (00:52)
root     pts/6        192.168.15.1     Mon Jun  1 16:35 - 16:36  (00:00)
root     pts/6        10.0.35.100      Mon Jun  1 12:24 - 12:42  (00:17)
wtmp begins Mon Jun  1 12:24:41 2009

/dev/pts/6

09:56:01

#last

root     pts/6        10.0.35.100      Wed Jun  3 09:51   still logged in
user     tty7         :0               Wed Jun  3 09:29   still logged in
reboot   system boot  2.6.29-2-686     Wed Jun  3 09:29 - 09:56  (00:26)
user     tty7         :0               Tue Jun  2 18:26 - down   (00:24)
user     tty1                          Tue Jun  2 17:45 - down   (01:04)
user     tty1                          Tue Jun  2 17:45 - 17:45  (00:00)
root     tty1                          Tue Jun  2 17:41 - 17:45  (00:03)
root     tty1                          Tue Jun  2 17:41 - 17:41  (00:00)
root     pts/11       linux15.unix.nt  Tue Jun  2 17:14 - 17:17  (00:03)
root     pts/8        linux3.unix.nt   Tue Jun  2 16:45 - 16:45  (00:00)
...
root     pts/6        192.168.101.2    Tue Jun  2 10:13 - 10:15  (00:01)
user     tty7         :0               Tue Jun  2 09:29 - 18:26  (08:56)
reboot   system boot  2.6.29-2-686     Tue Jun  2 09:29 - 18:50  (09:21)
root     tty1                          Mon Jun  1 17:36 - down   (00:00)
root     tty1                          Mon Jun  1 17:36 - 17:36  (00:00)
user     tty7         :0               Mon Jun  1 16:44 - down   (00:52)
reboot   system boot  2.6.29-2-686     Mon Jun  1 16:44 - 17:37  (00:52)
root     pts/6        192.168.15.1     Mon Jun  1 16:35 - 16:36  (00:00)
root     pts/6        10.0.35.100      Mon Jun  1 12:24 - 12:42  (00:17)
wtmp begins Mon Jun  1 12:24:41 2009

09:56:12

#less /var/log/auth.log

09:56:41

#Mark not set (press RETURN)

Jun  1 12:24:41 linux1 sshd[14115]: Accepted password for root from 10.0.35.100 port 33634 ssh2
Jun  1 16:35:48 linux1 sshd[17090]: Accepted password for root from 192.168.15.1 port 48655 ssh2
Jun  2 10:13:24 linux1 sshd[4225]: Accepted password for root from 192.168.101.2 port 37622 ssh2
Jun  2 10:16:47 linux1 sshd[4536]: Accepted password for root from 192.168.101.2 port 45994 ssh2
Jun  2 10:30:29 linux1 sshd[5269]: Accepted password for root from 10.0.35.100 port 46807 ssh2
Jun  2 11:16:20 linux1 sshd[6357]: Accepted password for root from 10.0.35.100 port 37458 ssh2
Jun  2 11:45:05 linux1 sshd[7041]: Accepted password for root from 192.168.101.1 port 56306 ssh2
Jun  2 12:24:03 linux1 sshd[8097]: Accepted password for root from 192.168.101.2 port 55397 ssh2
Jun  2 16:27:15 linux1 sshd[10939]: Accepted password for root from 192.168.107.2 port 49606 ssh2
Jun  2 16:30:55 linux1 sshd[11313]: Accepted password for root from 192.168.15.6 port 56915 ssh2
Jun  2 16:33:26 linux1 sshd[11541]: Accepted password for root from 192.168.15.6 port 36799 ssh2
Jun  2 16:35:19 linux1 sshd[11951]: Accepted password for root from 192.168.15.3 port 56278 ssh2
Jun  2 16:45:08 linux1 sshd[12211]: Accepted password for root from 192.168.15.3 port 49280 ssh2
Jun  2 17:14:03 linux1 sshd[13553]: Accepted password for root from 192.168.15.15 port 55512 ssh2
Jun  3 09:51:47 linux1 sshd[4167]: Accepted password for root from 10.0.35.100 port 38267 ssh2

/dev/pts/1

09:58:07

#less /var/log/auth.log

09:59:02

#ls -l /etc/ssh/

итого 152
-rw-r--r-- 1 root root 125749 Май  4 23:39 moduli
-rw-r--r-- 1 root root   1595 Май  4 23:39 ssh_config
-rw-r--r-- 1 root root   1874 Май 24 13:23 sshd_config
-rw------- 1 root root    668 Май 24 13:23 ssh_host_dsa_key
-rw-r--r-- 1 root root    599 Май 24 13:23 ssh_host_dsa_key.pub
-rw------- 1 root root   1675 Май 24 13:23 ssh_host_rsa_key
-rw-r--r-- 1 root root    391 Май 24 13:23 ssh_host_rsa_key.pub

09:59:47

#ssh-keygen -l -f /etc/ssh/ssh_host_dsa_key

1024 fa:0a:dd:c2:37:53:40:c3:1a:64:cf:fb:7a:78:18:ac /etc/ssh/ssh_host_dsa_key.pub (DSA)

10:01:42

#ping mail,ru

ping: unknown host mail,ru

10:02:24

#ping mail.ru

PING mail.ru (10.0.35.1) 56(84) bytes of data.
64 bytes from 10.0.35.1: icmp_seq=1 ttl=63 time=0.296 ms
64 bytes from 10.0.35.1: icmp_seq=2 ttl=63 time=0.222 ms
64 bytes from 10.0.35.1: icmp_seq=3 ttl=63 time=0.223 ms
64 bytes from 10.0.35.1: icmp_seq=4 ttl=63 time=0.223 ms
64 bytes from 10.0.35.1: icmp_seq=5 ttl=63 time=0.223 ms
64 bytes from 10.0.35.1: icmp_seq=6 ttl=63 time=0.223 ms
64 bytes from 10.0.35.1: icmp_seq=7 ttl=63 time=0.224 ms
64 bytes from 10.0.35.1: icmp_seq=8 ttl=63 time=0.223 ms
64 bytes from 10.0.35.1: icmp_seq=9 ttl=63 time=0.221 ms
^C
--- mail.ru ping statistics ---
9 packets transmitted, 9 received, 0% packet loss, time 8000ms
rtt min/avg/max/mdev = 0.221/0.230/0.296/0.030 ms

10:02:55

#ping mail.ru

PING mail.ru (194.67.57.126) 56(84) bytes of data.
64 bytes from mail.ru (194.67.57.126): icmp_seq=1 ttl=109 time=75.7 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=2 ttl=109 time=73.9 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=3 ttl=110 time=83.8 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=4 ttl=110 time=84.0 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=5 ttl=110 time=83.8 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=6 ttl=109 time=74.1 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=7 ttl=110 time=83.6 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=8 ttl=109 time=75.2 ms
64 bytes from mail.ru (194.67.57.126): icmp_seq=9 ttl=109 time=73.9 ms
^C
--- mail.ru ping statistics ---
9 packets transmitted, 9 received, 0% packet loss, time 8003ms
rtt min/avg/max/mdev = 73.956/78.733/84.041/4.627 ms

10:03:09

#ssh-key

bash: ssh-key: команда не найдена

/dev/pts/4

10:04:24

#screen -x

/dev/pts/1

10:07:01

#### ~/.ssh/known_hosts

10:08:02

####> ~/.ssh/known_hosts

10:08:16

#cat ~/.ssh/known_hosts

|1|W9t0AsUeVuuqFB3avPgwYhgddgU=|HVE+nJYaoTEMiLruthVVlY6Fb6g= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6XXgrwWrb1ZSYdGOCZziwKRREKfhW++NiammHOqMhMUDs67dwxdjYJjp9/bjChmCW7wA3djmPkFjUHeC/xbvaNTFO+NCS0iwbewz+Srl8E283aQUkTRuXdREQMkL7N3endUqOB7bROJ3oxMY7nURectgkHynnZ2hA1WANrPs8XpwV2bYuwpB9hrvJMw6+sxNojvp28lcDLnEXXh9pOuKkdkVtoUPGhRNr/IliRA2LRZg3QuUSkiEVL0R78k6siMV93W1J9ZhslSpW8XijCjkK4ZVyk1IXBVKAgltZRjVfJpizNF
|1|cPGJ5UHA/kR0/7UqqkaDTYcHX5w=|a2sq/bosCzKRSfDTyu4rF4q1VVo= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA2MKci5Bhj9AzgVtUDRapesSxLzafVqE/0Zb9Yd3hVnYSA8SAZ5V635nHjOZyGr/3twLQDX0Dr3BAemmBMmrbQi/MbRxSCUXumdeMQ9yIbfT3YxMJskqdpQEkLiCrqm2/0wEMUh0qqTzbAGdqBM+z3nWPeZE5EGdIVuVf++iV4GwvhWVlx5NDONG6tGfmpF9P4KV99/J1jhjf5s+ssMYJAbEgPlbi45ZLfV9uzIuk8RhN3yv6+kcg9K3dNLeaq+QB8pNAxqVNitOh13G2jyxD7ea3IDTiH1q8WfsSSJIwtN3AQsP
|1|B3r9PHdxBMBSU2gHvr46oumRjmw=|L2nP7U4UkcZf4jsbr4E5l8+nRvE= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6XXgrwWrb1ZSYdGOCZziwKRREKfhW++NiammHOqMhMUDs67dwxdjYJjp9/bjChmCW7wA3djmPkFjUHeC/xbvaNTFO+NCS0iwbewz+Srl8E283aQUkTRuXdREQMkL7N3endUqOB7bROJ3oxMY7nURectgkHynnZ2hA1WANrPs8XpwV2bYuwpB9hrvJMw6+sxNojvp28lcDLnEXXh9pOuKkdkVtoUPGhRNr/IliRA2LRZg3QuUSkiEVL0R78k6siMV93W1J9ZhslSpW8XijCjkK4ZVyk1IXBVKAgltZRjVfJpizNF
|1|EpAxWg/gTIHTHe6bG6Zmzn9+hcg=|9+08qViDjAYWrLujoMiTwVnS+NE= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAHEAzhDiIBZW+W7fAlcc/EocYkS6FBw7+YwzZxqjyFwu7+QoRlk5EC8oiWdLu1vW0BjmPDxD/8k2xYK+vMaxne4zBpMLT09RTj9eUSll3W1JZO6IHZqv8lZQ8yTtAVzyDVpjB/XtOyI9ejIrbVQIJ+j7Uw==
|1|zs2Onmn2RN3WotvkTl3uBCdDnpA=|IVdA67x366Z0m4Jllc6EGrdGIAk= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAr17bUhQ9tGV0rzBtTN7Qyg2UPoJFYMh2btgarK99UiHRCgJ3NksTWZfracqMhn1V/n9x75MiA4yjR+DU8cSsZvpisHjiQG67QK1Un9bozkmHx4aPzqDH0/jTdtkTxFrweKz3ywCs8s6wqmg4nIhhUNzNYvn/zRor+UOxz736YL6mBPijAd+h2SHeYiajNVMv1cp/L6zEI9P91SbnTnnx63QNHRUSlAMB5Wo6yTIZH3UUMgzUGJMJUt8F7kMU1wESJ4d6STta9JPfanNQ16JwVYKv22GQR6GXQmeZI7TIULnY88R
|1|reT2B+gxZ7+MmUCucuGaRXnZxy8=|sL403RBj8rOWfOJRGBB7UDhwCwY= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6XXgrwWrb1ZSYdGOCZziwKRREKfhW++NiammHOqMhMUDs67dwxdjYJjp9/bjChmCW7wA3djmPkFjUHeC/xbvaNTFO+NCS0iwbewz+Srl8E283aQUkTRuXdREQMkL7N3endUqOB7bROJ3oxMY7nURectgkHynnZ2hA1WANrPs8XpwV2bYuwpB9hrvJMw6+sxNojvp28lcDLnEXXh9pOuKkdkVtoUPGhRNr/IliRA2LRZg3QuUSkiEVL0R78k6siMV93W1J9ZhslSpW8XijCjkK4ZVyk1IXBVKAgltZRjVfJpizNF
|1|vpcfL9C8rmk77rBWDTb2mHyhJNQ=|l+5P2Nxyer7+O3uZ3PGVjR4Ovxg= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6XXgrwWrb1ZSYdGOCZziwKRREKfhW++NiammHOqMhMUDs67dwxdjYJjp9/bjChmCW7wA3djmPkFjUHeC/xbvaNTFO+NCS0iwbewz+Srl8E283aQUkTRuXdREQMkL7N3endUqOB7bROJ3oxMY7nURectgkHynnZ2hA1WANrPs8XpwV2bYuwpB9hrvJMw6+sxNojvp28lcDLnEXXh9pOuKkdkVtoUPGhRNr/IliRA2LRZg3QuUSkiEVL0R78k6siMV93W1J9ZhslSpW8XijCjkK4ZVyk1IXBVKAgltZRjVfJpizNF

10:09:59

#cat ~/.ssh/known_hosts

10:10:37

#cat ~/.ssh/known_hosts

|1|/YvOFpiV8o5vxsJAjS09q3THwp4=|eQlnewNy067bLbLOHUEaSh3PPfM= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA2MKci5Bhj9AzgVtUDRapesSxLzafVqE/0Zb9Yd3hVnYSA8SAZ5V635nHjOZyGr/3twLQDX0Dr3BAemmBMmrbQi/MbRxSCUXumdeMQ9yIbfT3YxMJskqdpQEkLiCrqm2/0wEMUh0qqTzbAGdqBM+z3nWPeZE5EGdIVuVf++iV4GwvhWVlx5NDONG6tGfmpF9P4KV99/J1jhjf5s+ssMYJAbEgPlbi45ZLfV9uzIuk8RhN3yv6+kcg9K3dNLeaq+QB8pNAxqVNitOh13G2jyxD7ea3IDTiH1q8WfsSSJIwtN3AQsP

/dev/pts/6

10:11:06

#cd ~

/dev/pts/1

10:11:07

#vi ~/.ssh/config

--- /dev/null	2009-06-03 09:29:21.503115980 +0300
+++ /root/.ssh/config	2009-06-03 10:14:42.000000000 +0300
@@ -0,0 +1,3 @@
+Host *
+       VisualHostKey yes
+

/dev/pts/6

10:11:15

#cd .ssh

10:11:20

#ls

authorized_keys  known_hosts

10:11:21

#cd know

bash: cd: know: Нет такого файла или каталога

10:11:26

#cat known_hosts

|1|/YvOFpiV8o5vxsJAjS09q3THwp4=|eQlnewNy067bLbLOHUEaSh3PPfM= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA2MKci5Bhj9AzgVtUDRapesSxLzafVqE/0Zb9Yd3hVnYSA8SAZ5V635nHjOZyGr/3twLQDX0Dr3BAemmBMmrbQi/MbRxSCUXumdeMQ9yIbfT3YxMJskqdpQEkLiCrqm2/0wEMUh0qqTzbAGdqBM+z3nWPeZE5EGdIVuVf++iV4GwvhWVlx5NDONG6tGfmpF9P4KV99/J1jhjf5s+ssMYJAbEgPlbi45ZLfV9uzIuk8RhN3yv6+kcg9K3dNLeaq+QB8pNAxqVNitOh13G2jyxD7ea3IDTiH1q8WfsSSJIwtN3AQsP

10:11:44

#cat authorized_keys

ssh-dss AAAAB3NzaC1kc3MAAACBAPM7secFkeM6KVrBL00ogESqHhZsItP2Pe2+hNt1FSvIZlNgFOvQUnAoC0TNVv8nASnoii/j4Ts2QNVe68Ox66WcXkV1ybHo9k75Bvm66mn0EZmhd7CfiQb2i+frZlM0TxDCPVBE8245M+5nU0neihE7OkGy6Y+fUT9/5PCREzOfAAAAFQDlSO+CParevDU1EMnFnyCWgHrgLwAAAIEA6xZUtORCvJDQAdLmfLkW4bfge5gzYuLkf3eWy8hbe5yWlHATC/YM1QefDzHZOJEvBjN6UXJ8AdeTa/9Qh6xysWsE66HJQhnfRLqG1gynsIqeaF0i8c1P48zwsNfCjWv8jgHdg/SXeAFemawY8q7eITZvdmun2Y3n

10:11:54

#vim /etc/ssh/ssh_config

--- /tmp/l3-saved-5658.1394.18292	2009-06-03 10:15:09.000000000 +0300
+++ /etc/ssh/ssh_config	2009-06-03 10:16:02.000000000 +0300
@@ -45,6 +45,7 @@
 #   Tunnel no
 #   TunnelDevice any:any
 #   PermitLocalCommand no
+    VisualHostKey yes
     SendEnv LANG LC_*
     HashKnownHosts yes
     GSSAPIAuthentication yes

/dev/pts/1

10:14:42

#cat ~/.ssh/config

Host *
       VisualHostKey yes

/dev/pts/6

10:16:02

#192.168.15.11

bash: 192.168.15.11: команда не найдена

10:17:23

#ssh 192.168.15.11

The authenticity of host '192.168.15.11 (192.168.15.11)' can't be established.
RSA key fingerprint is 34:6c:c2:da:38:7c:d7:17:e9:cd:17:8d:e7:cf:f1:a6.
+--[ RSA 2048]----+
|                 |
|     . .     . ..|
|      o =   o ..o|
|   . + + o . + o.|
|    = o S . o o.o|
|     o .   .   o+|
|                =|
|               o |
|              E  |
+-----------------+
Are you sure you want to continue connecting (yes/no)? no
Host key verification failed.

10:17:33

#ssh-key

ssh-keygen   ssh-keyscan

10:17:33

#ssh-keygen -R 192.168.15.11

/root/.ssh/known_hosts updated.
Original contents retained as /root/.ssh/known_hosts.old

/dev/pts/10

10:17:44

#ls /etc/ssh/

moduli      sshd_config       ssh_host_dsa_key.pub  ssh_host_rsa_key.pub
ssh_config  ssh_host_dsa_key  ssh_host_rsa_key

10:17:47

#ls -l /etc/ssh/

итого 152
-rw-r--r-- 1 root root 125749 Май  4 23:39 moduli
-rw-r--r-- 1 root root   1617 Июн  3 10:16 ssh_config
-rw-r--r-- 1 root root   1874 Май 24 13:23 sshd_config
-rw------- 1 root root    668 Май 24 13:23 ssh_host_dsa_key
-rw-r--r-- 1 root root    599 Май 24 13:23 ssh_host_dsa_key.pub
-rw------- 1 root root   1675 Май 24 13:23 ssh_host_rsa_key
-rw-r--r-- 1 root root    391 Май 24 13:23 ssh_host_rsa_key.pub

10:17:49

#mkdir /etc/ssh/old_keys/

10:17:58

Журнал лабораторных работ

Журнал

Среда (06/03/09)