beautypg.com

2 ssh login example, 8 introduction to https, Figure 128 ssh login example – ZyXEL Communications ES-2108 Series User Manual

Page 215

background image

Chapter 27 Access Control

ES-2108 Series User’s Guide

215

27.7.2 SSH Login Example

You can use an SSH client program to access the Switch. The following figure shows an
example using a text-based SSH client program. Refer to the documentation that comes with
your SSH program for information on using it.

Figure 128 SSH Login Example

27.8 Introduction to HTTPS

HTTPS (Hyper Text Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web
protocol that encrypts and decrypts web pages. Secure Socket Layer (SSL) is an application-
level protocol that enables secure transactions of data by ensuring confidentiality (an
unauthorized party cannot read the transferred data), authentication (one party can identify the
other party) and data integrity (you know if data has been changed).

It relies upon certificates, public keys, and private keys.

HTTPS on the Switch is used so that you may securely access the Switch using the web
configurator. When a computer requests an HTTPS (secure) connection, the Switch sends its
certificate to the computer. The user decides if he wants to trust the certificate. If the user
decides to trust the certificate, the certificate is used in building the HTTPS connection.

Please refer to the following figure.

C:\>ssh2 [email protected]

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: HOST IDENTIFICATION HAS CHANGED! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!

Someone could be eavesdropping on you right now (man-in-the-middle attack)!

It is also possible that the host key has just been changed.

Please contact your system administrator.

Add correct host key to "C:/Documents and Settings/Administrator/Application

Data/SSH/hostkeys/key_22_192.168.1.1.pub" to get rid of this message.

Received server key's fingerprint: xigil-gidot-homug-duzab-tocyh-pamyb-

ronep-tisaf-hebip-gokeb-goxix You can get a public key's fingerprint by

running % ssh-keygen -F publickey.pub

on the keyfile. Agent forwarding is disabled to avoid attacks by corrupted

servers. X11 forwarding is disabled to avoid attacks by corrupted servers.

Are you sure you want to continue connecting (yes/no)? yes

Do you want to change the host key on disk (yes/no)? yes

Agent forwarding re-enabled.

X11 forwarding re-enabled.

Host key saved to C:/Documents and Settings/Administrator/Application Data/

SSH/hostkeys/key_22_192.168.1.1.pub host key for 192.168.1.1, accepted by

Administrator Thu May 12 2005 09:52:21

admin's password:

Authentication successful.

Copyright (c) 1994 - 2006 ZyXEL Communications Corp.

ras>

See also other documents in the category ZyXEL Communications Computer Accessories: