[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"page-ru-/guides/linux/ssh-hardening-tips":3,"mdc--v4onju-key":622,"mdc-643cp8-key":633,"mdc--8lxsq6-key":650,"mdc--trh4fc-key":681,"mdc--l12r1s-key":713,"mdc-qlyk8r-key":744,"mdc-sk6pq8-key":775,"mdc--x6msrh-key":799,"mdc--m44wjl-key":832,"related-/guides/linux/ssh-basics,/guides/linux/firewall-tips,/guides/linux/sshd-config":878},{"id":4,"title":5,"appliesTo":6,"author":11,"body":12,"canonical":554,"code":71,"createdAt":555,"description":556,"difficulty":557,"draft":558,"estimatedTime":559,"extension":560,"faq":561,"howToSteps":574,"howToTotalTime":590,"image":554,"keywords":591,"locale":600,"meta":601,"navigation":602,"path":603,"platform":604,"related":605,"section":609,"seo":610,"severity":71,"stem":611,"summary":612,"tags":613,"twitterCreator":554,"twitterSite":554,"type":620,"updatedAt":555,"__hash__":621},"content_ru/guides/linux/ssh-hardening-tips.md","Советы по усилению безопасности SSH в Linux: пошаговое руководство",[7,8,9,10],"Ubuntu 22.04","Debian 12","CentOS 8","Rocky Linux 9","FixPedia Team",{"type":13,"value":14,"toc":540},"minimark",[15,20,24,28,53,57,62,65,89,100,111,126,144,148,151,160,163,189,193,196,205,208,232,236,242,251,258,277,280,294,298,304,326,331,350,355,365,379,382,396,399,403,406,428,431,454,457,479,483,533,536],[16,17,19],"h2",{"id":18},"введение","Введение",[21,22,23],"p",{},"Удалённый доступ через SSH — это мощный инструмент, но по умолчанию он часто остается уязвимым для автоматических атак. В этой статье собраны проверенные приёмы, которые сделают ваше SSH-соединение в Linux надёжным всего за несколько минут. После выполнения шагов вы получите защиту от брутфорса, ограничите права доступа и сможете отслеживать попытки взлома.",[16,25,27],{"id":26},"требования","Требования",[29,30,31,40,47,50],"ul",{},[32,33,34,35,39],"li",{},"Доступ root (или ",[36,37,38],"code",{},"sudo",") на целевом сервере.",[32,41,42,43,46],{},"Установленный SSH-сервер (",[36,44,45],{},"openssh-server",").",[32,48,49],{},"Базовые знания работы с терминалом и редактированием текстовых файлов.",[32,51,52],{},"Доступ в интернет для поиска обновлений (необязательно).",[16,54,56],{"id":55},"пошаговая-инструкция","Пошаговая инструкция",[58,59,61],"h3",{"id":60},"шаг-1-отключите-аутентификацию-по-паролю","Шаг 1: Отключите аутентификацию по паролю",[21,63,64],{},"Откройте конфигурационный файл SSH:",[66,67,72],"pre",{"className":68,"code":69,"language":70,"meta":71,"style":71},"language-bash shiki shiki-themes github-light github-dark","sudo nano /etc/ssh/sshd_config\n","bash","",[36,73,74],{"__ignoreMap":71},[75,76,79,82,86],"span",{"class":77,"line":78},"line",1,[75,80,38],{"class":81},"sScJk",[75,83,85],{"class":84},"sZZnC"," nano",[75,87,88],{"class":84}," /etc/ssh/sshd_config\n",[21,90,91,92,95,96,99],{},"Найдите строку ",[36,93,94],{},"PasswordAuthentication"," и измените её значение на ",[36,97,98],{},"no",":",[66,101,105],{"className":102,"code":103,"language":104,"meta":71,"style":71},"language-ini shiki shiki-themes github-light github-dark","PasswordAuthentication no\n","ini",[36,106,107],{"__ignoreMap":71},[75,108,109],{"class":77,"line":78},[75,110,103],{},[21,112,113,114,117,118,121,122,125],{},"Сохраните изменения (",[36,115,116],{},"Ctrl+O",", затем ",[36,119,120],{},"Enter",") и выйдите (",[36,123,124],{},"Ctrl+X","). Примените настройки:",[66,127,129],{"className":68,"code":128,"language":70,"meta":71,"style":71},"sudo systemctl restart sshd\n",[36,130,131],{"__ignoreMap":71},[75,132,133,135,138,141],{"class":77,"line":78},[75,134,38],{"class":81},[75,136,137],{"class":84}," systemctl",[75,139,140],{"class":84}," restart",[75,142,143],{"class":84}," sshd\n",[58,145,147],{"id":146},"шаг-2-отключите-rootлогин-по-ssh","Шаг 2: Отключите root‑логин по SSH",[21,149,150],{},"Добавьте или измените параметр:",[66,152,154],{"className":102,"code":153,"language":104,"meta":71,"style":71},"PermitRootLogin no\n",[36,155,156],{"__ignoreMap":71},[75,157,158],{"class":77,"line":78},[75,159,153],{},[21,161,162],{},"Сохраните, перезапустите SSH и проверьте результат:",[66,164,166],{"className":68,"code":165,"language":70,"meta":71,"style":71},"sudo systemctl restart sshd\ngrep PermitRootLogin /etc/ssh/sshd_config\n",[36,167,168,178],{"__ignoreMap":71},[75,169,170,172,174,176],{"class":77,"line":78},[75,171,38],{"class":81},[75,173,137],{"class":84},[75,175,140],{"class":84},[75,177,143],{"class":84},[75,179,181,184,187],{"class":77,"line":180},2,[75,182,183],{"class":81},"grep",[75,185,186],{"class":84}," PermitRootLogin",[75,188,88],{"class":84},[58,190,192],{"id":191},"шаг-3-ограничьте-пользователей-имеющих-доступ-по-ssh","Шаг 3: Ограничьте пользователей, имеющих доступ по SSH",[21,194,195],{},"Определите список разрешённых учётных записей:",[66,197,199],{"className":102,"code":198,"language":104,"meta":71,"style":71},"AllowUsers alice bob\n",[36,200,201],{"__ignoreMap":71},[75,202,203],{"class":77,"line":78},[75,204,198],{},[21,206,207],{},"Сохраните конфигурацию, перезапустите сервис и проверьте:",[66,209,211],{"className":68,"code":210,"language":70,"meta":71,"style":71},"sudo systemctl restart sshd\ngrep AllowUsers /etc/ssh/sshd_config\n",[36,212,213,223],{"__ignoreMap":71},[75,214,215,217,219,221],{"class":77,"line":78},[75,216,38],{"class":81},[75,218,137],{"class":84},[75,220,140],{"class":84},[75,222,143],{"class":84},[75,224,225,227,230],{"class":77,"line":180},[75,226,183],{"class":81},[75,228,229],{"class":84}," AllowUsers",[75,231,88],{"class":84},[58,233,235],{"id":234},"шаг-4-измените-стандартный-порт","Шаг 4: Измените стандартный порт",[21,237,238,239,99],{},"Изменение порта снижает нагрузку сканеров. Укажите новый порт, например ",[36,240,241],{},"2222",[66,243,245],{"className":102,"code":244,"language":104,"meta":71,"style":71},"Port 2222\n",[36,246,247],{"__ignoreMap":71},[75,248,249],{"class":77,"line":78},[75,250,244],{},[21,252,253,254,257],{},"Откройте порт в брандмауэре (пример для ",[36,255,256],{},"ufw","):",[66,259,261],{"className":68,"code":260,"language":70,"meta":71,"style":71},"sudo ufw allow 2222\n",[36,262,263],{"__ignoreMap":71},[75,264,265,267,270,273],{"class":77,"line":78},[75,266,38],{"class":81},[75,268,269],{"class":84}," ufw",[75,271,272],{"class":84}," allow",[75,274,276],{"class":275},"sj4cs"," 2222\n",[21,278,279],{},"Перезапустите SSH:",[66,281,282],{"className":68,"code":128,"language":70,"meta":71,"style":71},[36,283,284],{"__ignoreMap":71},[75,285,286,288,290,292],{"class":77,"line":78},[75,287,38],{"class":81},[75,289,137],{"class":84},[75,291,140],{"class":84},[75,293,143],{"class":84},[58,295,297],{"id":296},"шаг-5-настройте-аутентификацию-только-по-публичным-ключам","Шаг 5: Настройте аутентификацию только по публичным ключам",[21,299,300],{},[301,302,303],"strong",{},"Генерация ключей на клиентской машине",[66,305,307],{"className":68,"code":306,"language":70,"meta":71,"style":71},"ssh-keygen -t ed25519 -C \"workstation\"\n",[36,308,309],{"__ignoreMap":71},[75,310,311,314,317,320,323],{"class":77,"line":78},[75,312,313],{"class":81},"ssh-keygen",[75,315,316],{"class":275}," -t",[75,318,319],{"class":84}," ed25519",[75,321,322],{"class":275}," -C",[75,324,325],{"class":84}," \"workstation\"\n",[21,327,328],{},[301,329,330],{},"Копирование открытого ключа на сервер",[66,332,334],{"className":68,"code":333,"language":70,"meta":71,"style":71},"ssh-copy-id -i ~/.ssh/id_ed25519.pub user@host\n",[36,335,336],{"__ignoreMap":71},[75,337,338,341,344,347],{"class":77,"line":78},[75,339,340],{"class":81},"ssh-copy-id",[75,342,343],{"class":275}," -i",[75,345,346],{"class":84}," ~/.ssh/id_ed25519.pub",[75,348,349],{"class":84}," user@host\n",[21,351,352],{},[301,353,354],{},"Завершение настройки на сервере",[21,356,357,358,361,362,364],{},"Убедитесь, что ",[36,359,360],{},"PubkeyAuthentication"," включён и ",[36,363,94],{}," отключён:",[66,366,368],{"className":102,"code":367,"language":104,"meta":71,"style":71},"PubkeyAuthentication yes\nPasswordAuthentication no\n",[36,369,370,375],{"__ignoreMap":71},[75,371,372],{"class":77,"line":78},[75,373,374],{},"PubkeyAuthentication yes\n",[75,376,377],{"class":77,"line":180},[75,378,103],{},[21,380,381],{},"Сохраните, перезапустите SSH:",[66,383,384],{"className":68,"code":128,"language":70,"meta":71,"style":71},[36,385,386],{"__ignoreMap":71},[75,387,388,390,392,394],{"class":77,"line":78},[75,389,38],{"class":81},[75,391,137],{"class":84},[75,393,140],{"class":84},[75,395,143],{"class":84},[397,398],"in-article-ad",{},[16,400,402],{"id":401},"проверка-результата","Проверка результата",[21,404,405],{},"Проверьте, что настройки вступили в силу:",[66,407,409],{"className":68,"code":408,"language":70,"meta":71,"style":71},"sshd -t && echo \"Конфигурация корректна\"\n",[36,410,411],{"__ignoreMap":71},[75,412,413,416,418,422,425],{"class":77,"line":78},[75,414,415],{"class":81},"sshd",[75,417,316],{"class":275},[75,419,421],{"class":420},"sVt8B"," && ",[75,423,424],{"class":275},"echo",[75,426,427],{"class":84}," \"Конфигурация корректна\"\n",[21,429,430],{},"Попробуйте подключиться по SSH, используя ключ:",[66,432,434],{"className":68,"code":433,"language":70,"meta":71,"style":71},"ssh -i ~/.ssh/id_ed25519 user@host -p 2222\n",[36,435,436],{"__ignoreMap":71},[75,437,438,441,443,446,449,452],{"class":77,"line":78},[75,439,440],{"class":81},"ssh",[75,442,343],{"class":275},[75,444,445],{"class":84}," ~/.ssh/id_ed25519",[75,447,448],{"class":84}," user@host",[75,450,451],{"class":275}," -p",[75,453,276],{"class":275},[21,455,456],{},"Проверьте активные соединения:",[66,458,460],{"className":68,"code":459,"language":70,"meta":71,"style":71},"ss -tnlp | grep 2222\n",[36,461,462],{"__ignoreMap":71},[75,463,464,467,470,474,477],{"class":77,"line":78},[75,465,466],{"class":81},"ss",[75,468,469],{"class":275}," -tnlp",[75,471,473],{"class":472},"szBVR"," |",[75,475,476],{"class":81}," grep",[75,478,276],{"class":275},[16,480,482],{"id":481},"возможные-проблемы","Возможные проблемы",[29,484,485,499,512],{},[32,486,487,490,491,494,495,498],{},[301,488,489],{},"SSH перестал запускаться"," – проверьте синтаксис конфигурации: ",[36,492,493],{},"sudo sshd -t",". Если ошибка в параметрах, верните предыдущую конфигурацию из бэкапа ",[36,496,497],{},"/etc/ssh/sshd_config.bak",".",[32,500,501,504,505,508,509,46],{},[301,502,503],{},"Не удаётся подключиться после смены порта"," – убедитесь, что брандмауэр действительно открыл новый порт (",[36,506,507],{},"sudo ufw status"," или ",[36,510,511],{},"sudo firewall-cmd --list-all",[32,513,514,517,518,521,522,525,526,529,530,46],{},[301,515,516],{},"Доступ по ключу отклонён"," – проверьте права на ",[36,519,520],{},".ssh"," (",[36,523,524],{},"chmod 700 ~/.ssh",", ",[36,527,528],{},"chmod 600 ~/.ssh/authorized_keys",") и корректность открытого ключа (",[36,531,532],{},"ssh-keygen -l -f ~/.ssh/id_ed25519.pub",[21,534,535],{},"Следуйте этим советам регулярно, и ваш SSH-сервер станет значительно труднодоступным для автоматизированных атак.",[537,538,539],"style",{},"html pre.shiki code .sScJk, html code.shiki .sScJk{--shiki-default:#6F42C1;--shiki-dark:#B392F0}html pre.shiki code .sZZnC, html code.shiki .sZZnC{--shiki-default:#032F62;--shiki-dark:#9ECBFF}html .default .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html.dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html pre.shiki code .sj4cs, html code.shiki .sj4cs{--shiki-default:#005CC5;--shiki-dark:#79B8FF}html pre.shiki code .sVt8B, html code.shiki .sVt8B{--shiki-default:#24292E;--shiki-dark:#E1E4E8}html pre.shiki code .szBVR, html code.shiki .szBVR{--shiki-default:#D73A49;--shiki-dark:#F97583}",{"title":71,"searchDepth":180,"depth":180,"links":541},[542,543,544,552,553],{"id":18,"depth":180,"text":19},{"id":26,"depth":180,"text":27},{"id":55,"depth":180,"text":56,"children":545},[546,548,549,550,551],{"id":60,"depth":547,"text":61},3,{"id":146,"depth":547,"text":147},{"id":191,"depth":547,"text":192},{"id":234,"depth":547,"text":235},{"id":296,"depth":547,"text":297},{"id":401,"depth":180,"text":402},{"id":481,"depth":180,"text":482},null,"2026-06-30 09:49:33","Узнайте, как усилить безопасность SSH-соединений в Linux. Пошаговые инструкции, проверки и советы для защиты вашего сервера и дополнительные рекомендации.","medium",false,"10-15 мин","md",[562,565,568,571],{"question":563,"answer":564},"Зачем нужен харденинг SSH и какие риски он устраняет?","Усиление SSH убирает стандартные уязвимости, такие как аутентификация по паролю, открытая root-доступность и прослушивание на любом порту, снижая риск взлома на 80‑90 %.",{"question":566,"answer":567},"Как быстро проверить, включены ли нежелательные настройки SSH?","Запустите `sshd -t && grep -E 'PasswordAuthentication|PermitRootLogin|PermitEmptyPasswords' /etc/ssh/sshd_config` — вывод покажет текущие значения.",{"question":569,"answer":570},"Что делать, если после изменений SSH перестал подключаться?","Выполните `sudo systemctl restart sshd`, проверьте конфигурацию `sshd -t` и вернитесь к предыдущим настройкам через резервную копию `/etc/ssh/sshd_config.bak`.",{"question":572,"answer":573},"Как обеспечить многофакторную аутентификацию для SSH?","Используйте `pam`‑модуль `pam-google-authenticator` или `libpam-yubikey` вместе с ключевыми парами — так достигается второй фактор на устройстве.",[575,578,581,584,587],{"name":576,"text":577},"Отключите аутентификацию по паролю","Откройте `/etc/ssh/sshd_config` и установите `PasswordAuthentication no`. Сохраните файл и перезапустите SSH: `sudo systemctl restart sshd`.",{"name":579,"text":580},"Отключите root‑логин по SSH","Добавьте `PermitRootLogin no`. Перезапустите сервис: `sudo systemctl restart sshd`. Проверьте изменение командой `grep PermitRootLogin /etc/ssh/sshd_config`.",{"name":582,"text":583},"Ограничьте пользователей, имеющих доступ по SSH","Укажите разрешённых пользователей через `AllowUsers user1 user2`. Перезапустите SSH и проверьте: `grep AllowUsers /etc/ssh/sshd_config`.",{"name":585,"text":586},"Измените стандартный порт","Измените `Port 2222` (или любой непредсказуемый порт). Откройте брандмауэр: `sudo ufw allow 2222` (UFW) или `sudo firewall-cmd --add-port=2222/tcp --permanent`. Перезапустите SSH.",{"name":588,"text":589},"Настройте аутентификацию только по публичным ключам","На клиентской машине сгенерируйте пару ключей: `ssh-keygen -t ed25519 -C \"workstation\"`. Скопируйте открытый ключ на сервер: `ssh-copy-id -i ~/.ssh/id_ed25519.pub user@host`. В `/etc/ssh/sshd_config` установите `PubkeyAuthentication yes` и `PasswordAuthentication no`. Перезапустите SSH.","PT15M",[592,593,594,595,596,94,597,313,598,599],"SSH hardening","Linux SSH security","passwordless login","public key authentication","AllowUsers","Port 22","sshd_config","SSH server hardening","ru_RU",{},true,"/guides/linux/ssh-hardening-tips","linux",[606,607,608],"/guides/linux/ssh-basics","/guides/linux/firewall-tips","/guides/linux/sshd-config","Гайды Linux",{"title":5,"description":556},"guides/linux/ssh-hardening-tips","В этой статье расскажем, как усилить безопасность SSH в Linux, чтобы предотвратить незаконный доступ и повысить защиту сервера.",[614,615,616,617,618,619],"Linux","SSH","безопасность","hardening","сервер","настройки","guide","_N0bUntcZXx8b3t321i_DiV1DGA8zIMRzBnP9vZ3Zp8",{"data":623,"body":624},{},{"type":625,"children":626},"root",[627],{"type":628,"tag":21,"props":629,"children":630},"element",{},[631],{"type":632,"value":564},"text",{"data":634,"body":635},{},{"type":625,"children":636},[637],{"type":628,"tag":21,"props":638,"children":639},{},[640,642,648],{"type":632,"value":641},"Запустите ",{"type":628,"tag":36,"props":643,"children":645},{"className":644},[],[646],{"type":632,"value":647},"sshd -t && grep -E 'PasswordAuthentication|PermitRootLogin|PermitEmptyPasswords' /etc/ssh/sshd_config",{"type":632,"value":649}," — вывод покажет текущие значения.",{"data":651,"body":652},{},{"type":625,"children":653},[654],{"type":628,"tag":21,"props":655,"children":656},{},[657,659,665,667,673,675,680],{"type":632,"value":658},"Выполните ",{"type":628,"tag":36,"props":660,"children":662},{"className":661},[],[663],{"type":632,"value":664},"sudo systemctl restart sshd",{"type":632,"value":666},", проверьте конфигурацию ",{"type":628,"tag":36,"props":668,"children":670},{"className":669},[],[671],{"type":632,"value":672},"sshd -t",{"type":632,"value":674}," и вернитесь к предыдущим настройкам через резервную копию ",{"type":628,"tag":36,"props":676,"children":678},{"className":677},[],[679],{"type":632,"value":497},{"type":632,"value":498},{"data":682,"body":683},{},{"type":625,"children":684},[685],{"type":628,"tag":21,"props":686,"children":687},{},[688,690,696,698,704,705,711],{"type":632,"value":689},"Используйте ",{"type":628,"tag":36,"props":691,"children":693},{"className":692},[],[694],{"type":632,"value":695},"pam",{"type":632,"value":697},"‑модуль ",{"type":628,"tag":36,"props":699,"children":701},{"className":700},[],[702],{"type":632,"value":703},"pam-google-authenticator",{"type":632,"value":508},{"type":628,"tag":36,"props":706,"children":708},{"className":707},[],[709],{"type":632,"value":710},"libpam-yubikey",{"type":632,"value":712}," вместе с ключевыми парами — так достигается второй фактор на устройстве.",{"data":714,"body":715},{},{"type":625,"children":716},[717],{"type":628,"tag":21,"props":718,"children":719},{},[720,722,728,730,736,738,743],{"type":632,"value":721},"Откройте ",{"type":628,"tag":36,"props":723,"children":725},{"className":724},[],[726],{"type":632,"value":727},"/etc/ssh/sshd_config",{"type":632,"value":729}," и установите ",{"type":628,"tag":36,"props":731,"children":733},{"className":732},[],[734],{"type":632,"value":735},"PasswordAuthentication no",{"type":632,"value":737},". Сохраните файл и перезапустите SSH: ",{"type":628,"tag":36,"props":739,"children":741},{"className":740},[],[742],{"type":632,"value":664},{"type":632,"value":498},{"data":745,"body":746},{},{"type":625,"children":747},[748],{"type":628,"tag":21,"props":749,"children":750},{},[751,753,759,761,766,768,774],{"type":632,"value":752},"Добавьте ",{"type":628,"tag":36,"props":754,"children":756},{"className":755},[],[757],{"type":632,"value":758},"PermitRootLogin no",{"type":632,"value":760},". Перезапустите сервис: ",{"type":628,"tag":36,"props":762,"children":764},{"className":763},[],[765],{"type":632,"value":664},{"type":632,"value":767},". Проверьте изменение командой ",{"type":628,"tag":36,"props":769,"children":771},{"className":770},[],[772],{"type":632,"value":773},"grep PermitRootLogin /etc/ssh/sshd_config",{"type":632,"value":498},{"data":776,"body":777},{},{"type":625,"children":778},[779],{"type":628,"tag":21,"props":780,"children":781},{},[782,784,790,792,798],{"type":632,"value":783},"Укажите разрешённых пользователей через ",{"type":628,"tag":36,"props":785,"children":787},{"className":786},[],[788],{"type":632,"value":789},"AllowUsers user1 user2",{"type":632,"value":791},". Перезапустите SSH и проверьте: ",{"type":628,"tag":36,"props":793,"children":795},{"className":794},[],[796],{"type":632,"value":797},"grep AllowUsers /etc/ssh/sshd_config",{"type":632,"value":498},{"data":800,"body":801},{},{"type":625,"children":802},[803],{"type":628,"tag":21,"props":804,"children":805},{},[806,808,814,816,822,824,830],{"type":632,"value":807},"Измените ",{"type":628,"tag":36,"props":809,"children":811},{"className":810},[],[812],{"type":632,"value":813},"Port 2222",{"type":632,"value":815}," (или любой непредсказуемый порт). Откройте брандмауэр: ",{"type":628,"tag":36,"props":817,"children":819},{"className":818},[],[820],{"type":632,"value":821},"sudo ufw allow 2222",{"type":632,"value":823}," (UFW) или ",{"type":628,"tag":36,"props":825,"children":827},{"className":826},[],[828],{"type":632,"value":829},"sudo firewall-cmd --add-port=2222/tcp --permanent",{"type":632,"value":831},". Перезапустите SSH.",{"data":833,"body":834},{},{"type":625,"children":835},[836],{"type":628,"tag":21,"props":837,"children":838},{},[839,841,847,849,855,857,862,864,870,872,877],{"type":632,"value":840},"На клиентской машине сгенерируйте пару ключей: ",{"type":628,"tag":36,"props":842,"children":844},{"className":843},[],[845],{"type":632,"value":846},"ssh-keygen -t ed25519 -C \"workstation\"",{"type":632,"value":848},". Скопируйте открытый ключ на сервер: ",{"type":628,"tag":36,"props":850,"children":852},{"className":851},[],[853],{"type":632,"value":854},"ssh-copy-id -i ~/.ssh/id_ed25519.pub user@host",{"type":632,"value":856},". В ",{"type":628,"tag":36,"props":858,"children":860},{"className":859},[],[861],{"type":632,"value":727},{"type":632,"value":863}," установите ",{"type":628,"tag":36,"props":865,"children":867},{"className":866},[],[868],{"type":632,"value":869},"PubkeyAuthentication yes",{"type":632,"value":871}," и ",{"type":628,"tag":36,"props":873,"children":875},{"className":874},[],[876],{"type":632,"value":735},{"type":632,"value":831},[]]