Generating an ssh key pair — osl wiki documentation

*

Our SSH server supports all desktop & server versions of Windows, 32-bit and 64-bit, from Windows XP.. SP3 and Windows Server 2003, up to the most recent – Windows 10 and Windows Server 2019.

Bạn đang xem: Generating an ssh key pair — osl wiki documentation

au-79.net SSH Server includes the following:

SFTPhường. server: Secure file transfer using SFTP - compatible with a wide variety of clientsSCPhường server: Secure file transfer using SCP - compatible with commvà line và graphical clientsFTPS server: Secure tệp tin transfer using FTPhường over TLS/SSL - compatible with secure FTPS clientsSSH server: Secure remote access via console - vt100, xterm và bvterm are supportedSecure remote access via GUI - Remote Desktop or WinVNC requiredSecure, effortless Git integrationSecure TCP/IPhường. connection tunneling (port forwarding)

You can try out au-79.net SSH Server risk-free. To begin, simply download the installation executable - you will find the download links on our download page. After installing, you are free khổng lồ evaluate au-79.net SSH Server for up khổng lồ 30 days. If you then decide khổng lồ continue using it, purchase a license.

When the personal edition is chosen during installation, au-79.net SSH Server can be used không lấy phí of charge by non-commercial personal users.

au-79.net software does not contain ads, install hàng hóa bundles or collect user data for sale. We are 100% supported by users who license our software. Thank you!

Professional SSH server

We continue khổng lồ invest considerable effort to lớn create the best SSH software we can. These are some of the features that make au-79.net SSH Server special:

Unlimited connections: au-79.net SSH Server imposes no limits on the number of users you can configure, & gets no more expensive for larger servers. The number of simultaneous connections is limited only by system resources.

Windows groups: au-79.net SSH Server natively supports configurability through Windows groups. No need to lớn define trương mục settings for each Windows trương mục individually. The SSH VPS knows what groups a user is in và, if configured, will use appropriate Windows group settings. Virtual filesystem mount points can be inherited from multiple groups.

Quotas and statistics: The SSH Server can be configured with per-user và per-group quotas & bandwidth limits, và keeps a record of daily, monthly, and annual usage statistics.

Speed: SFTP transfer tốc độ mostly depends on the client, but au-79.net SSH Server allows clients to obtain some of the fasdemo transfer speeds available. With au-79.net SSH Client, SFTPhường tệp tin transfer speeds in the tens or hundreds of MB/s can be obtained. SFTP v6 optimizations, including copy-file and check-tệp tin for remote file hashing và checksums, are supported.

Virtual filesystem: File transfer clients can be restricted to a single directory, or several directories in a complex layout. Terminal shell clients can be restricted to lớn the same virtual filesystem by setting their Shell access type to BvShell.

Git integration: Set an account"s shell access type to lớn Git access only, & configure the path to lớn your Git binaries và repositories. The trương mục can now securely access Git, without being given unnecessary access to lớn the system.

Virtual accounts: want to set up an SFTPhường hệ thống with many users, but don"t want lớn create & manage 1000 Windows accounts? No problem. au-79.net SSH Server supports virtual accounts, created in SSH VPS settings, backed by the identity of one or more Windows accounts. SSH VPS settings for these accounts are also configurable on a virtual group basis.

Xem thêm: Nghĩa Của Từ Lý Trình Là Gì, Cột Mốc Lý Trình Trong Bất Động Sản Vùng Ven

Bandwidth limits: Separate upload & tải về speed limits can be configured for each user and group.

Excellent terminal support: au-79.net SSH Server provides the best terminal support available on the Windows platform. Our terminal subsystem employs sophisticated techniques to render output accurately lượt thích no other Windows SSH VPS. When used with au-79.net SSH Client, our bvterm protocol supports the full spectrum of a Windows console"s features: colors, Unicode characters, and large scrollable buffers.

BvShell: Users whose filesystem access should be restricted khổng lồ specific directories can have sầu their Shell access type configured to lớn BvShell. Similar khổng lồ chroot, this provides access to lớn a limited terminal shell which can allow for more powerful access than a file transfer client, but still restricts the user to root directories configured for them.

Telnet forwarding: The SSH Server can be configured to lớn forward terminal sessions to a legacy Telnet server, providing SSH security to existing Telnet applications.

Server-side forwarding: with au-79.net SSH Server và Client, a VPS and multiple clients can be mix up so that all port forwarding rules are configured centrally at the server, without requiring any client-side setting updates. The SSH clients only need to lớn be configured once, & port forwarding rules can easily be changed when necessary.

Multi-instance support: au-79.net SSH Server supports multiple simultaneous, independent installations on the same computer for customers needing completely separate instances for different groups of users. Multiple SSH hệ thống versions can run concurrently, as separate instances on the same server.

Master/slave configuration: In environments with multiple SSH hệ thống installations, one can be configured to run as master, và others can be configured khổng lồ run as slaves. Slave sầu installations can be configured khổng lồ synchronize their settings, host keys, and/or password cache with the master. This feature can be used both for cluster support, & to reproduce aspects of SSH VPS settings on a large number of similar installations.

Delegated administration: Users can be granted limited access lớn SSH Server settings, where they can add or edit virtual accounts using the remote administration interface in au-79.net SSH Client. Limited administration tasks can be delegated without requiring full administrative sầu access.

Windows version compatibility

au-79.net SSH Server supports the following Windows versions:

Windows Server 2019Windows Server 2016Windows 10Windows Server 2012 R2Windows Server 2012Windows 8.1Windows Server 2008 R2Windows Server 2008Windows Vista SP1 or SP2Windows Server 2003 R2Windows Server 2003Windows XP SP3

A recent au-79.net SSH Server version should be used on all platforms. The SSH Server is network-facing, security-sensitive software. Using a recent version is the only way to receive sầu updates. Therefore, we vày not recommend indefinite use of older versions.

Encryption and security features

SSH, SFTPhường and SCP:

Key exchange algorithms:

Curve25519ECDH over elliptic curves secp256k1, nistp256, nistp384, nistp521 using SHA-512, SHA-384, or SHA-256Diffie Hellman with group exchange using SHA-256 or SHA-1Diffie Hellman with fixed 4096, 3072, 2048, or 1024-bit group parameters using SHA-512, SHA-256, or SHA-1GSSAPI key exchange using Diffie Hellman và Kerberos authentication

Signature algorithms:

Ed25519ECDSA over elliptic curves secp256k1, nistp256, nistp384, nistp521 using SHA-512, SHA-384, or SHA-256RSA using 4096, 3072, 2048, 1024-bit key sizes with SHA-512, SHA-256, or SHA-1DSA using SHA-1 (legacy)

Encryption algorithms:

AES with 256, 128-bit keys in GCM modeAES with 256, 192, 128-bit keys in CTR modeAES with 256, 192, 128-bit keys in CBC mode (legacy)3DES in CTR or CBC mode (legacy)

Data integrity protection:

AES with 256, 128-bit keys in GCM modeHMAC using SHA-256, SHA-1

Server authentication:

Client verifies server identity using server host key fingerprint or public keyAutomatic synchronization of new host keys to client supported

Client authentication:

Password authentication with Windows accounts - local or Active sầu DirectoryPassword authentication with virtual accounts - configurable password policyPublic key authenticationKerberos single sign-on using GSSAPITwo-factor authentication with a time-based one-time password

FTP over TLS (SSL):

TLS security:

Available TLS versions và cipher suites depover on the installed version of WindowsTLS versions 1.0, 1.1 và 1.2 can be enabled individually in Advanced settingsECDHE, RSA & DHE cipher suite families can be enabled individually

Authentication:

Can use self-signed or CA-signed hệ thống certificatePassword authentication with Windows accounts - local or Active DirectoryPassword authentication with virtual accounts - configurable password policy

Requires secure clients:

Only secure FTPS is supported - plaintext FTPhường. connections are not acceptedFTPS clients must support explicit TLS using the AUTH TLS commandFTPS clients must tư vấn passive sầu mode and use the TLS resume feature for data connections

Additional security features:

Denial of service protection through throttling of incoming connectionsLogin attempt delay for concurrent logins for same user or from same IPhường addressAutomatic temporary IPhường. address blocking with IPhường whitelistUsername blacklistConfigurable client IP.. address, hàng hóa version string restrictionsAccount-specific IPhường address restrictionsIP-based access rules configurable by countryFIPS 140-2 validation

When FIPS is enabled in Windows, our software uses Windows built-in cryptography, validated by NIST khổng lồ FIPS 140-2 under certificates#2937,#2606,#2357, and#1892. On Windows XPhường. và 2003, our software uses the Crypto++ 5.3.0 FIPS DLL, originally validated by NIST under certificate#819 (historical). When FIPS mode is not enabled, additional non-FIPS algorithms are supported.

Cryptographic implementations & availability

Current au-79.net software versions (8.36 and higher) use the following cryptographic implementations for different algorithms, on different versions of Windows:

AlgorithmWindows XP,Server 2003Windows Vista to lớn 8.1,Server 2008 to lớn 2012 R2Windows 10,Server 2016 to 2019SignatureRSAEd25519ECDSA (NIST curves)ECDSA/secp256k11024-bit DSANon-standard DSAKey exchangeClassic DHCurve25519ECDH (NIST curves)ECDH/secp256k1EncryptionAES3DESIntegrityGCMHMAC-SHA2HMAC-SHA1
Crypto++ 5.3Windows CNGWindows CNG
n/aDJBDJB
Crypto++ 5.3Windows CNGWindows CNG
Crypto++ 5.3OpenSSLWindows CNG
Crypto++ 5.3Windows CNGWindows CNG
Crypto++ 5.3Crypto++ 5.6Crypto++ 5.6
Crypto++ 5.3Windows CNGWindows CNG
n/aDJBDJB
Crypto++ 5.3Windows CNGWindows CNG
Crypto++ 5.3OpenSSLWindows CNG
Crypto++ 5.3Windows CNGWindows CNG
Crypto++ 5.3Windows CNGWindows CNG
n/aWindows CNGWindows CNG
Crypto++ 5.3Windows CNGWindows CNG
Crypto++ 5.3Windows CNGWindows CNG

This sản phẩm includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit. (http://www.openssl.org/)