差分

このページの2つのバージョン間の差分を表示します。

--- windows:openssh [2020/05/17 06:23] – tomoyan 作成
+++ windows:openssh [2021/06/15 02:00] (現在) – [scoop でインストール可能な OpenSSH の実装] ともやん
@@ 行 1: / 行 1: @@
-<html>
+====== OpenSSH(Open Secure Shell) ======
-  <style>
+[[linux:openssh|OpenSSH - Linux]]\\
-    #result pre {
-      overflow: scroll;
-      overflow-x: hidden;
-      font-size: 10px;
-    }
-    #result_long pre {
-      height: 300px;
-      overflow: scroll;
-      overflow-x: hidden;
-      font-size: 10px;
-    }
-  </style>
-</html>
-====== Open Secure Shell ======
 ===== インストール =====
@@ 行 20: / 行 6: @@
 git, openssh のインストール\\
 <code powershell>
-PS > scoop install git openssh
+$ scoop install git openssh
 </code>
 <WRAP prewrap 100% #result_long>
@@ 行 124: / 行 110: @@
 pshazz のインストール\\
 <code powershell>
-PS > scoop install pshazz
+$ scoop install pshazz
 </code>
 <WRAP prewrap 100% #result_long>
@@ 行 152: / 行 138: @@
 ===== 公開/秘密キーのペアの生成 =====
-RSA 4096 bit の場合\\
+==== RSA 4096 bit の場合 ====
+RSA - Rivest-Shamir-Adleman\\
+[[wpjp>RSA暗号|RSA暗号 - Wikipedia]]\\
 <WRAP prewrap 100%>
 <code powershell>
-PS > cd ~
+$ cd ~
-PS > ssh-keygen -t rsa -b 4096 -f .ssh\id_rsa_tomoyan-2020 -C "Monster's Garage Co.,Ltd. TomoYan RSA"
+$ ssh-keygen -t rsa -b 4096 -f ~/.ssh/id_rsa_tomoyan-2020 -C "Monster's Garage Co.,Ltd. TomoYan RSA"
 </code>
 </WRAP>
@@ 行 162: / 行 152: @@
 <code>
 Generating public/private rsa key pair.
-Enter passphrase (empty for no passphrase):
+Enter passphrase (empty for no passphrase): ****************
-Enter same passphrase again:
+Enter same passphrase again: ****************
-Your identification has been saved in .ssh\id_rsa_tomoyan-2020.
+Your identification has been saved in .ssh/id_rsa_tomoyan-2020.
-Your public key has been saved in .ssh\id_rsa_tomoyan-2020.pub.
+Your public key has been saved in .ssh/id_rsa_tomoyan-2020.pub.
 The key fingerprint is:
 SHA256:H7Uqk4RsQzVbkkcGjg93H9gTFcYkoIKfOWbyeNzM69g Monster's Garage Co.,Ltd. TomoYan RSA
@@ 行 183: / 行 173: @@
 </WRAP>
-ECDSA 521 bit の場合\\
+==== ECDSA 521 bit の場合 ====
+ECDSA - Elliptic Curve Digital Signature Algorithm\\
+[[wpjp>楕円曲線DSA|楕円曲線DSA - Wikipedia]]\\
 <WRAP prewrap 100%>
 <code powershell>
-PS > cd ~
+$ cd ~
-PS > ssh-keygen -t ecdsa -b 521 -f .ssh\id_ecdsa_tomoyan-2020 -C "Monster's Garage Co.,Ltd. TomoYan ECDSA"
+$ ssh-keygen -t ecdsa -b 521 -f ~/.ssh/id_ecdsa_tomoyan-2020 -C "Monster's Garage Co.,Ltd. TomoYan ECDSA"
 </code>
 </WRAP>
@@ 行 193: / 行 186: @@
 <code>
 Generating public/private ecdsa key pair.
-Enter passphrase (empty for no passphrase):
+Enter passphrase (empty for no passphrase): ****************
-Enter same passphrase again:
+Enter same passphrase again: ****************
-Your identification has been saved in .ssh\id_ecdsa_tomoyan-2020.
+Your identification has been saved in .ssh/id_ecdsa_tomoyan-2020.
-Your public key has been saved in .ssh\id_ecdsa_tomoyan-2020.pub.
+Your public key has been saved in .ssh/id_ecdsa_tomoyan-2020.pub.
 The key fingerprint is:
 SHA256:UsCHI8qiuNFymE3RSFOC1UyYTwxG+8fyUEtzvgxoIAg Monster's Garage Co.,Ltd. TomoYan ECDSA
@@ 行 213: / 行 206: @@
 </code>
 </WRAP>
+==== Ed25519 の場合 ====
+Ed25519 - EdDSA - Edwards-curve Digital Signature Algorithm\\
+[[wpjp>エドワーズ曲線デジタル署名アルゴリズム|エドワーズ曲線デジタル署名アルゴリズム - Wikipedia]]\\
+<WRAP prewrap 100%>
+<code powershell>
+$ cd ~
+$ ssh-keygen -t ed25519 -f ~/.ssh/id_ed25519_tomoyan-2021 -C "Monster's Garage Co.,Ltd. TomoYan Ed25519"
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code>
+Generating public/private ed25519 key pair.
+Enter passphrase (empty for no passphrase): ****************
+Enter same passphrase again: ****************
+Your identification has been saved in .ssh/id_ed25519_tomoyan-2021.
+Your public key has been saved in .ssh/id_ed25519_tomoyan-2021.pub.
+The key fingerprint is:
+SHA256:9FaSUchPixc7/46hFPnpjn50bCfAleMrD+AmGukbJAY Monster's Garage Co.,Ltd. TomoYan Ed25519
+The key's randomart image is:
++--[ED25519 256]--+
+|         ..o.  . |
+|          ooo +  |
+|  E     . o=.* . |
+|   .   . .ooO..  |
+|    o ..S.ooo+ o |
+|   . oo ..o oo=.=|
+|     ..o o  .=+=.|
+|      o.   . +oo.|
+|      ..   .+o+..|
++----[SHA256]-----+
+</code>
+</WRAP>
+===== 公開キーの登録 =====
+<WRAP prewrap 100%>
+<code>
+$ cat .ssh/id_ed25519_tomoyan-2021.pub
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code>
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIQZ2+HYiPH+KFyCtcqSqqe3sCRnPObwv/bITzuifaan Monster's Garage Co.,Ltd. TomoYan Ed25519
+</code>
+</WRAP>
+<WRAP prewrap 100%>
+<code>
+$ cat ~/.ssh/id_ed25519_tomoyan-2021.pub >> ~/.ssh/authorized_keys
+$ cat ~/.ssh/authorized_keys
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code>
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIQZ2+HYiPH+KFyCtcqSqqe3sCRnPObwv/bITzuifaan Monster's Garage Co.,Ltd. TomoYan Ed25519
+</code>
+</WRAP>
+===== scoop で利用可能な OpenSSH の配布形態 =====
+/06/15 現在、本家である [[https://www.openssh.com/|OpenSSH]] では 2021/04/19 に [[https://www.openssh.com/txt/release-8.6|OpenSSH 8.6]] がリリースされている状況である。\\
+Fedora 34 では openssh-8.6p1-3 がリリースされている。\\
+<WRAP prewrap 100% #mincode_long>
+<code>
+$ dnf info openssh
+インストール済みパッケージ
+名前         : openssh
+バージョン   : 8.6p1
+リリース     : 3.fc34
+Arch         : x86_64
+サイズ       : 1.8 M
+ソース       : openssh-8.6p1-3.fc34.src.rpm
+リポジトリー : @System
+repo から    : updates
+概要         : An open source implementation of SSH protocol version 2
+URL          : http://www.openssh.com/portable.html
+ライセンス   : BSD
+説明         : SSH (Secure SHell) is a program for logging into and executing
+             : commands on a remote machine. SSH is intended to replace rlogin and
+             : rsh, and to provide secure encrypted communications between two
+             : untrusted hosts over an insecure network. X11 connections and
+             : arbitrary TCP/IP ports can also be forwarded over the secure channel.
+             :
+             : OpenSSH is OpenBSD's version of the last free version of SSH, bringing
+             : it up to date in terms of security and features.
+             :
+             : This package includes the core files necessary for both the OpenSSH
+             : client and server. To make this package useful, you should also
+             : install openssh-clients, openssh-server, or both.
+</code>
+</WRAP>
+scoop の main bucket の配布状況は以下のような感じである。\\
+<WRAP prewrap 100%>
+<code powershell>
+$ scoop search openssh
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code powershell>
+'main' bucket:
+    git-with-openssh (2.30.1.windows.1)
+    mls-software-openssh (8.4p1-2)
+    openssh (8.2p1-1)
+    win32-openssh (8.1.0.0p1-Beta)
+</code>
+</WRAP>
+[[https://www.openssh.com/|OpenSSH]]\\
+<WRAP prewrap 100%>
+<code powershell>
+$ scoop info openssh
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code powershell>
+Name: openssh
+Description: A suite of secure networking utilities based on the Secure Shell protocol.
+Version: 8.2p1-1
+Website: https://www.openssh.com/
+License: ISC (https://spdx.org/licenses/ISC.html)
+Manifest:
+  C:\Users\tomoyan\scoop\buckets\main\bucket\openssh.json
+Installed: No
+Binaries:
+  findssl.sh.exe usr\bin\scp.exe usr\bin\sftp.exe usr\bin\ssh.exe usr\bin\ssh-add.exe usr\bin\ssh-agent.exe ssh-copy-id.exe usr\bin\ssh-keygen.exe usr\bin\ssh-keyscan.exe usr\bin\sshd.exe
+</code>
+</WRAP>
+[[https://github.com/PowerShell/Win32-OpenSSH|PowerShell/Win32-OpenSSH: Win32 port of OpenSSH]]\\
+<WRAP prewrap 100%>
+<code powershell>
+$ scoop info win32-openssh
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code powershell>
+Name: win32-openssh
+Description: A suite of secure networking utilities based on the Secure Shell protocol. (Microsoft port)
+Version: 8.1.0.0p1-Beta
+Website: https://github.com/PowerShell/Win32-OpenSSH
+License: BSD-3-Clause (https://github.com/PowerShell/openssh-portable/blob/latestw_all/LICENCE)
+Manifest:
+  C:\Users\tomoyan\scoop\buckets\main\bucket\win32-openssh.json
+Installed: No
+Binaries:
+  scp.exe sftp.exe sftp-server.exe ssh-add.exe ssh-agent.exe ssh-keygen.exe ssh-keyscan.exe ssh-shellhost.exe ssh.exe sshd.exe
+Notes
+-----
+This is a pre-release (non-production ready)
+Run 'sudo C:\Users\tomoyan\scoop\apps\win32-openssh\current\install-sshd.ps1' to install sshd and
+ssh-agent as a service.
+Run 'sudo C:\Users\tomoyan\scoop\apps\win32-openssh\current\uninstall-sshd.ps1' to uninstall the
+services.
+</code>
+</WRAP>
+[[https://www.mls-software.com/opensshd.html|mls-software.com]]\\
+<WRAP prewrap 100%>
+<code powershell>
+$ scoop info mls-software-openssh
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code powershell>
+Name: mls-software-openssh
+Description: A Windows installer package of Openssh for Windows that is actively maintained and current.
+Version: 8.4p1-2
+Website: https://www.mls-software.com/opensshd.html
+License: ISC (https://spdx.org/licenses/ISC.html)
+Manifest:
+  C:\Users\tomoyan\scoop\buckets\main\bucket\mls-software-openssh.json
+Installed: No
+Binaries:
+  bin\scp.exe bin\sftp.exe bin\ssh-add.exe bin\ssh-agent.exe bin\ssh-keygen.exe bin\ssh-keyscan.exe bin\ssh.exe
+</code>
+</WRAP>
+[[https://gitforwindows.org/|Git for Windows]]\\
+<WRAP prewrap 100%>
+<code powershell>
+$ scoop info git-with-openssh
+</code>
+</WRAP>
+<WRAP prewrap 100% #result>
+<code powershell>
+Name: git-with-openssh
+Description: Distributed version control system
+Version: 2.30.1.windows.1
+Website: https://gitforwindows.org
+License: GPL-2.0-only (https://spdx.org/licenses/GPL-2.0-only.html)
+Manifest:
+  C:\Users\tomoyan\scoop\buckets\main\bucket\git-with-openssh.json
+Installed: No
+Binaries:
+  cmd\git.exe cmd\gitk.exe cmd\git-gui.exe git-bash.exe usr\bin\ssh.exe usr\bin\sshd.exe usr\bin\scp.exe usr\bin\sftp.exe usr\bin\ssh-add.exe usr\bin\ssh-agent.exe usr\bin\ssh-keygen.exe usr\bin\ssh-keyscan.exe usr\bin\tig.exe
+Environment: (simulated)
+  GIT_INSTALL_ROOT=C:\Users\tomoyan\scoop\apps\git\current
+</code>
+</WRAP>
+===== 参考文献 =====
+[[qita>wnoguchi/items/a72a042bb8159c35d056|2017年版 SSH公開鍵認証で使用する秘密鍵ペアの作り方 - Qiita]]\\
+==== 付録 ====
+[[tw>tomoyan596/status/1403806629703741441|RSA暗号は設計者の名前が由来でしたよねぇ🤔 Rivest-Shamir-Adleman 長すぎです😅 / Twitter]]\\