Configuring ssh, Introduction, Ssh fundamentals – RuggedCom RuggedRouter RX1100 User Manual

30. Configuring SSH

Revision 1.14.3

262

RX1000/RX1100™

30. Configuring SSH

30.1. Introduction

This chapter familiarizes the user with:

• Configuring SSH Authentication

• SSH Networking And Access Control

• Setting SSH Server Options

30.1.1. SSH Fundamentals

The Secure Shell protocol provides interactive remote login service, remote command execution,
and file transmission functions. It implements strong authentication and secure communications over
insecure channels. The program that accepts an SSH client's connection is an SSH server. The
SSH server can be programmed to enforce conditions to increase security. These conditions can be
imposed upon specific hosts or upon all hosts in general.

SSH has seen two major revisions of the protocol: SSH v1 and v2. SSH v1 supported only the RSA
authentication scheme, while SSH v2 supports both RSA and DSA.

Warning

SSH v1 is known to be insecure and should generally not be used.

SSH provides service on TCP port 22 by default. If a firewall configured and operating on the router,
it is advised to leave port 22 (or whichever port SSH has been configured to use) open in order to
allow secure, authorized access from outside the firewall.

SSH also provides TCP forwarding, a means to forward otherwise insecure TCP traffic through SSH
Secure Shell.

30.1.1.1. Included With SSH

Your RuggedRouter software includes "scp", an SSH utility to perform secure copying of files and
directories over the network.

If you decide to create user accounts, the ssh-keygen utility can be used to populate the account
with SSH keys.