RHCE-Interview Question || SSH



Q:1 What is the default port & configuration file of SSH Server ?

Ans: 22 is default port for ssh and ‘/etc/ssh/sshd_config’ is the configuration file.

Q:2 How to change the default ssh port in linux ?

Ans: To change the port , first edit the file ‘ /etc/ssh/sshd_config ‘ , change the vaule
of parameter ‘ port 22 ‘, now restart the ssh service.

Q:3 What is the configuration file of ssh client ?

Ans: ‘ /etc/ssh/ssh_config ‘ is configuration file for ssh client.

Q:4 What is SSH port forwarding ?

Ans: SSH Port Forwarding, sometimes called SSH Tunneling, which allows you to
establish a secure SSH session and then tunnel arbitrary TCP connections through it.
Tunnels can be created at any time, with almost no effort and no programming.
Syntax : ssh -L localport:host:hostport user@ssh_server -N
where:
-L – port forwarding parameters
localport – local port (chose a port that is not in use by other service)
host – server that has the port (hostport) that you want to forward
hostport – remote port
-N – do not execute a remote command, (you will not have the shell, see below)
user – user that have ssh access to the ssh server (computer)
ssh_server – the ssh server that will be used for forwarding/tunneling
Without the -N option you will have not only the forwarding port but also the remote
shell.

Q:5 How to disable the root login in linux server ?

Ans: Open the file ‘ /etc/ssh/sshd_config ‘ and chnage the paramenter
‘PermitRootLogin yes’ to ‘PermitRootLogin no’ & restart the ssh service.

Q:6 How to allow only specific users to ssh your linux server ?

Ans: Open the file ‘/etc/ssh/sshd_config’ and add the parameter ‘AllowUsers user1
user2′ & then restart the ssh server.

Q:7 How to enable debugging in ssh command ?

Ans: To enable debugging in ssh command use ‘-v’ option like ‘ssh
root@www.ganrc.in -v’. To increase the debugging level just increase the
number of v’s.

Q:8 What is the difference between ssh & Telnet ?

Ans: In ssh communication between client & server is encrypted but in telnet
communication between the client & server is in plain text . We can also say SSH
uses a public key for authentication while Telnet does not use any authentication.SSH
adds a bit more overhead to the bandwidth compared to Telnet.Default port of ssh is
22 and for telnet 23.

Q:9 What is use of sshpass command in linux ?

Ans: sshpass is a command which allows us to automatically supply password to the
command prompt so that automated scripts can be run as desired by users. sshpass
supplies password to ssh prompt using a dedicated tty , fooling ssh to believe that a
interactive user is supplying password.

Q:10 What is the use of scp command ?

Ans: SCP stands for Secure Copy ,it copies files between hosts over a network. It
uses ssh for data transfer & uses the same authentication and provides the same
security as ssh. Unlike rcp, scp will ask for passwords or passphrases if they are
needed for authentication.

Q:11 What is the use of blowfish options in scp command ?

Ans: Using blowfish options in scp command , we can increase the speed, by default
scp uses the Triple-DES cipher to encrypt the data being copied.
Example : scp -c blowfish /home/itstuff.txt root@mail.ganrc.in:/opt/

Q:12 How to limit the bandwidth used by scp command ?

Ans: We can limit the bandwidth used by the scp command using the -l option as
shown in the syntax.’#scp -l bandwidth_limit filename username@remotehost:/
folder-name’ , where bandwidth_limit is numeric to be specified in kilobits per
second.

Q:13 How to enable passwordless ssh authentication in Linux ?

Ans: To Implement passwordless or Keys based authentication we have to generate
Public and Private keys , Copy the Pubic keys to remote Linux servers either manually
or by ssh-copy-id command.ssh-copy-id command will automatically copy the
contents of id_rsa.pub file to ‘~/.ssh/authorized_keys’ file of remote linux server.

Q:14 How to check SSH server’s Version ?

Ans: Using the command ‘ ssh -V ‘ we can find the ssh server’s version.

Q:15 How to Copy the file “server.txt” from the local machine to a remote
host using port 2751 in /opt folder.

Ans: scp -P 2751 /home/server.txt root@mail.ganrc.in:/opt

No comments: