. 检查是否可以无秘钥登录
ssh localhost
. 生成公钥,密钥
ssh-keygen -t dsa -P '' -f ~/.ssh/id_dsa
. 添加到信任
cat ~/.ssh/id_dsa.pub >> ~/.ssh/authorized_keys
. 更改权限
chmod 0600 ~/.ssh/authorized_keys
. 复制公钥到远程计算机
ssh-copy-id -i ~/.ssh/id_dsa.pub $USER@$HOSTNAME
ssh-keygen -t rsa -P '' -f ~/.ssh/id_rsa
cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
chmod 0600 ~/.ssh/authorized_keys
su - hadoop -c "ssh-keygen -t dsa -P '' -f ~/.ssh/id_dsa"
su - hadoop -c "cat ~/.ssh/id_dsa.pub >> ~/.ssh/authorized_keys"
su - hadoop -c "chmod 0600 ~/.ssh/authorized_keys"
# ssh-copy-id -i /home/hadoop/.ssh/id_dsa.pub $USER@$HOSTNAME
# ssh $HOSTNAME
. 格式转换 DSA格式不支持转换为PEM,需要RSA
ssh-keygen -f ~/.ssh/id_rsa.pub -e -m pem >~/.ssh/id_rsa.pub.pem
. 工具使用 SecureCRT
. 生成公钥,密钥
. 使用私钥作为登录依据
. 复制公钥内容到远端计算机的~/.ssh/authorized_keys文件中(远端计算机需要先用密码登录)
. 第一次登录解密私钥
. 使用root权限查看登录日志确认使用publickey登录
tail /var/log/secure
