The “ssh” Command in Linux [18 Practical Examples]

LINUX
FUNDAMENTALS
A Complete Guide for Beginners Enroll Course Now

The ssh command in Linux is used to securely connect two computers (client and server) following the SSH protocol. You can execute commands from a remote location and transfer data using the ssh command in Linux. The data transfer is encrypted which prevents hackers from accessing them. In this article, I will show you how to set up a server on your own. Also, I will give you some practical examples of the ssh command in Linux.

A. Description

The “ssh” of the ssh command in Linux stands for “Secure Shell”. SSH is an internet protocol that allows a secure connection in an insecure network. It was developed by Tatu Ylonen in 1995 to replace Telnet which is vulnerable to attacks. The ssh command in Linux uses SSH protocol. The ssh (or ssh client) command is a program for logging into a remote machine and executing commands that can also provide secure encrypted communication.

B. Syntax

The syntax of the ssh command in Linux is slightly different. However, you can provide it with multiple options. The syntax goes like the following:

ssh [OPTION]... username@ip_address
Note: In the above syntax OPTION enclosed by a square bracket, followed by three dots, represents that you can utilize multiple options at once. The username donates the username of the server you want to log in and ip_address denotes the IP address of that server

C. Options

As I have mentioned earlier, the ssh command in Linux has a lot of options. You can check them by yourself by typing the command below in the Ubuntu Terminal:

man ssh

Useful Options

  • -4, only uses IPv4 addresses.
  • -6, only uses IPv6 addresses.
  • -C, compresses data.
  • -i, is used to login with a private key.
  • -l, specifies the user.
  • -p, is used to specify a port.
Note: The options in Linux CLI(Command Line Interface) are all case-sensitive, So be careful while using them

How to Set Up a Server

As I have mentioned earlier, you need a server computer and one client computer to connect them using the ssh command in Linux. However, I don’t have access to any server right now and I think most of you don’t have either. But I have an Ubuntu installed in a virtual machine called VMware Workstation. I will use that as a server and I will show you how you can set up a server. Finally, I will use Windows 10 as a client. I will use Windows Powershell to access the server. Now you might ask, aren’t we supposed to talk about the ssh command in Linux? Good thing, ssh command and all its options are also available in Windows. You can access a Linux server with another Linux client using the same commands which will be shown here. Now, let’s get started and set up our own server.

You need to follow the steps below to set up a server:

❶ At first open an Ubuntu Terminal

❷ Copy the following commands in the command prompt and press ENTER.

sudo apt-get install openssh-server

You will see an output like below. Wait until the installation is completed.Installing "Openssh-server" in the server so that it can be accessed with the ssh command in Linux ❸ Sometimes the server is turned on automatically. However, sometimes you need to start it manually. To start the server and check the status, copy the following two commands:

sudo service ssh start
sudo service ssh status

If you see “active (running)” like below then you are all set up. Well done.Starting the server and checking its status❹ Now to access a server, you need an IP address. To find the IP address of your server, copy the command below and press ENTER:

ifconfig

You will see inet followed by your IP address at the beginning like below.Getting ip address to access the server with the ssh command in LinuxIf you don’t have ifconfig on your machine, copy the command below to install it:

sudo apt-get install net-tools

You will see output in your Terminal like below.Installing "net-tools" package

Practical Examples of the “ssh” Command in Linux

In this section, I will show you the use of the ssh command in Linux with practical examples. Make sure you follow every step carefully.

Example 1: Connect to Server Using the “ssh” Command in Linux

Earlier, I have shown you how to find IP address of your server. Now I will show you how to access that server using the ssh command in Linux.

If I write “whoami” command in my server, I get the username which is walid. Let’s say I get the same result or not after accessing the server by a client. Now follow the steps below:Printing the username of the serverSteps to Follow >

➊ At first launch the Windows Poweshell

➋ Write a command like below in the command prompt:

ssh [email protected]
Note: Here walid is a username. It would be different for different users. And the number set after “at the rate(@)” symbol is the IP address of the server

➌ Now, press the ENTER button.

❹ Write “yes” if you are accessing the server for the first time and press ENTER.

❺ Now provide the password associated with the username and hit ENTER again.

Output >

The output will be like the below. The Terminal is started with “walid@Ubuntu” like the server. And when I wrote the command “whoami”, it is showing walid, exactly like the server. Now you can do pretty much anything on the server even if you are on the other side of the world.Logging into the server with the ssh command in Linux


Similar Readings


Example 2: Run Commands in a Server Using the “ssh” Command in Linux

In this example, I will execute a command in the server from the client. I will create a file and put some text in it from the client. Then I will view the file from the server. You can do that with me by doing the following:

Steps to Follow >

❶ Open a Windows Powershell first.

❷ Then log into the server (see Example 1)

❸ Copy the following command in the command prompt and press ENTER:

echo “Welcome from the local machine!” > welcome
Note: It will create a file welcome with the text “Welcome from the local machine!

❹ Now launch an Ubuntu Terminal

❺ Insert the following command and hit the ENTER button from the keyboard:

cat welcome
Note: It will show the content of the file welcome

Output >

The image is from Windows Powershell below. Here the output of the echo command is redirected into the welcome file.Generating a file named "welcome"Now, I viewed the welcome file from the server and see, it is exactly the same text!Printing the content of the "welcome" file after logging into the server using the ssh command in Linux

Example 3: Run Commands without Creating a Shell

Now, I will run a command without even creating a shell. In this example, I will create a new directory from the client and show you the directory from the server. You do the same, follow the steps below:

Steps to Follow >

❶ At first open a Windows Powershell from the Windows operating system.

❷ Then copy the following command in the command prompt and press ENTER:

ssh [email protected] mkdir newdirectory
Note: The mkdir command is used to make a new directory

❸ Provide password and press ENTER again.

❹ Now launch a Terminal in Ubuntu and write the command below:

ls
Note: The ls command lists out all the files and folders in a directory

❺ Press ENTER from the keyboard.

Output >

Here I sent a command without even logging into the server. In this case, I made a directory named newdirectory in the home directory.Executing a command using the ssh command in LinuxHere I listed out all the contents in the home directory and guess what, the newdirectory directory is there.listing out the directories of the server

Example 4: Log in with Different Username Using the “ssh” Command in Linux

The “-l” option in the ssh command in Linux is used to specify a username. My server has another user named jim. In this example, I will log into the server using the option -l”. Practice this with me by doing the following:

Steps to Follow >

❶ Open Windows Powershell from the start menu.

❷ Copy the following command in the command prompt:

ssh -l jim 192.168.235.129

❸ Press the ENTER button.

Output >

As you can see, I have logged into the account jim and there is jim@Ubuntu in the Terminal, similar to the server.Accessing the server using the ssh command in Linux and option "-l"

Example 5: Change the Port of a Server

The default port of SSH is 22 as it is assigned by IANA (Internet Assigned Numbers Authority). However, it is possible to change the port number. A port can be anything you want but it is a good practice to assign a number greater than 1024. In this example, I will assign port 3017. This example can be difficult for some of you. So, do the following step-by-step with me:

Steps to Follow >

❶ Press CTRL + ALT + T to launch an Ubuntu Terminal.

❷ Write the following command in the command prompt and press ENTER:

sudo nano /etc/ssh/sshd_config
Note: You may need to provide the password

❸ Find and edit, or add a new line like below:

port 3017

❹ Restart the server by typing the following command and hit ENTER:

sudo service ssh restart

❺ Enable firewall and allow port 3017 by typing the following command one by one and press ENTER:

sudo ufw enable
sudo ufw allow 3017

❻ (Optional) Check whether port 3017 is open or not by the following command:

sudo ufw status

❼ (Optional) Check if the server is listening to port 3017 or not by the following command:

netstat -tulnp

Output >

Here, I have attached some screenshots to help you with the process. The first image below shows how you should edit the sshd_config file.Changing the port in the sshd_config file of the serverThis image shows the execution of all the commands. From ufw status, you can see, port 3017 is active.Restarting the server and allowing the new port in the firewallAnd here, you can see that the server is listening to the port 3017.Checking whether the server is listening to the new port

Example 6: Connect to a Server with Different Port Using the “ssh” Command in Linux

In Example 5, you have seen how to open a new port. Now I will show you how to access the server with that port using the ssh command in Linux. I will option -p” for this purpose. Do the following:

Steps to Follow >

❶ Open Windows Powershell first.

❷ Write the following command in the Powershell:

ssh -p 3017 [email protected]

❸ Press the ENTER button from the keyboard.

❹ Provide the password and hit ENTER.

Output >

As you can, I have logged into the server through port 3017.Accessing the server with the ssh command in Linux and port number

Example 7: Copy File Using “scp”

The scp stands for “secure copy”. It is a tool to transfer files between client and server using SSH protocol. In this example, I will show to copy a file using scp.

As you can see, in the client computer (Windows), there is a file named local_file.Showing file in the clientAnd there is a file named remote_file in the server (Ubuntu).Showing file in the serverNow, I will copy the local_file in the server and the remote_file in client. Follow the steps below:

Steps to Follow >

❶ At first press Windows_key + R, write “powershell” and press ENTER to open Windows Powershell

❷ Copy the following command to copy a file from client to server:

scp D:\Local_machine\local_file [email protected]:~
Note: Backslash (\) is a directory separator in Windows. And tilde (~) denotes home directory in Linux

❸ Give the password and press ENTER button.

❹ Write the following command to copy a file from server to client:

scp [email protected]:~/remote_file D:\Local_machine

❺ Again, provide the password and hit the ENTER button.

Output >

Here, at the beginning, I copied the local_file to the server. That’s why they provided the path of the file in Windows first, then the path of its destination. Similarly, I copied the remote_file to the client. Here, I gave the location of the file in the server, followed by its destination. Moreover, 100% indicates the transfer is completed.Copying file using the ssh command in LinuxNow, you can the local_file in the home directory of the server.Listing files in the serverAnd, the remote_file is in the client.Listing files in the client computer

Example 8: Copy File using “sftp”

In the previous example, I showed you coping a file using scp. Now I will show you how to copy files using sftp. The sftp stands for “Secure File Transfer Protocol”, which is similar to ftp. However, sftp uses SSH protocol to transfer files. Here I will copy a file named local_file to server and remote_file from server to client.

Here you can see the local_file in my client computer (Windows).File in the client computerAnd the remote_file in the server computer (Ubuntu).File in the serverNow I will copy files using sftp. You can try it with me by doing the following:

Steps to Follow >

❶ At first launch Windows Powershell.

❷ Copy the following command in the Powershell:

sftp [email protected]

❸ Give the password and press ENTER.

❹ Use the following command to copy the file from client to server and press ENTER:

put D:\Local_machine\local_file
Note: Backslash (\) is a directory separator in Windows

❺ Write the following command to copy the file from the server to the client and press ENTER.

get remote_file D:\Local_machine

❻ Write the following command to exit.

exit

Output >

Here, I establish a connection at first. Then used put to copy file to the server and get to copy file from the server to the client.Copying file using the ssh command in LinuxSee, there is a file named local_file in the home directory of the server (Ubuntu).Displaying files in the server computerAnd, the remote_file in the client(Windows).Displaying files in the local computer

Example 9: Generating Public-Private Keys Using “ssh-keygen”

Communication is more secure using the ssh command in Linux. In ssh command, you can use public-private key pair to connect to a server apart from using a password. In this example, I will show to generate public and private keys using the “ssh-keygen” command. The “-f” option of this command is used to generate keys in a defined location. Follow the steps below with me:

Steps to Follow >

❶ Open Windows Powershell from the start menu.

❷ Write the following command in the command prompt and press ENTER:

ssh-keygen -f D:\Local_machine\mykey
Note: Here “mykey” is the name of the keys which will be generated

❸ Give a passphrase (it’s not mandatory) and hit ENTER

❹ Provide the passphrase again and press ENTER from the keyboard.

Output >

If you follow all the steps perfectly, you will see an output like below.Generating public and private keys using the ssh command in LinuxAlso, as you can see, there are two keys generated in the defined location. The mykey file is the private key whereas mykey.pub is the public key.Showing public and private keys in the client computer


Similar Readings


Example 10: Transfer Public Key File to Server

In the previous example, I generated two keys. The public key needs to be in the server and the private key in the client computer. Remember the location of the public key and private key can be anything you want. However, there is a default directory in Linux to store the public key named .ssh in the home directory and I will keep my public key there. The folder should be secured. To conserve every right to the owner (root user), write the following command in the Ubuntu Terminal:

chmod 700 ~/.ssh

Moreover, there is a command available to send the public key to the server in Linux. The command goes like below:

ssh-copy-id -i /path_of_the_public_key [email protected]

Sadly, Windows Powershell doesn’t have any command like that. That’s why I will send the public key using scp. Now follow the steps with me:

Steps to Follow >

❶ Press Windows_key + R, write “powershell” and press ENTER to open Windows Powershell first

❷ Write the following command in the command prompt and press ENTER again:

scp D:\Local_machine\mykey.pub [email protected]:~/.ssh

❸ Type “yes” and hit Enter. (if necessary)

❹ Provide the password and press ENTER from the keyboard.

❺ Delete the public key from the client now.

❻ Then launch an Ubuntu Terminal and copy the following command:

sudo service ssh restart

❼ Press the ENTER button.

Output >

Here you are seeing the output in Windows Powershell. “100%” indicates the file is copied successfully.Copying public key to the server using the ssh command in LinuxHere you can see, there is a new file name mykey.pub in the .ssh directory.Showing the public key in the serverAnd here I am deleting the public key. Don’t forget to do that.Deleting the public key from the client computer

Example 11. Enable Key-based Authentication

If you want to log in using private-public key pair you need to enable it on the server. In this example, I will enable key-based authentication by editing the sshd_config file. Do the following:

Steps to Follow >

❶ Press CTRL + ALT + T to open an Ubuntu Terminal.

❷ Copy the following command in the Terminal and press ENTER:

sudo nano /etc/ssh/sshd_config

❸ Find and edit or add the following line in the file:

PubkeyAuthentication yes

❹ Press CTRL + O, then Y to save the file; CTRL + X to exit.

❺ Write the following command to restart ssh service:

sudo service ssh restart

❻ Hit ENTER from the keyboard.

Output >

Here I have attached the image to show you how to edit the sshd_config file.Editing the sshd_config fileAnd, this image shows how to run the commands in the Terminal.Restarting the ssh service

Example 12: Connect to Server with Public-Private Key Pair Using the “ssh” Command in Linux

Finally, now I will access the server with the public-private key pair using the ssh command in Linux. I will use the option -i” to provide the path of the private key. Now follow the steps below with me:

Steps to Follow >

❶ Open Windows Powershell at first.

❷ Insert the following the command in command prompt and press ENTER:

ssh -i D:\Local_machine\mykey [email protected]

❸ Provide the passphrase for key and hit ENTER again.

❹ Give the password and press ENTER from the keyboard.

Output >

Earlier, I used only password to log into the server. Now, as can see, I am using private and passphrase as well.Accessing the server using the private key and ssh command in Linux

Example 13: Enable Only Key-based Authentication

What if you want to access a server by key pair? For this, you will need to edit the .sshd_config and turn off password-based authentication. You will also need to add the public key in the authorized_keys file. To d follow the steps below:

Steps to Follow >

❶ At first, launch the Ubuntu Terminal.

❷ Write the following command in the Terminal and press ENTER:

cat ~/.ssh/mykey.pub >> ~/.ssh/authorized_keys
Note: This will add the public key in the authorized_keys file. And if there is no authorized_keys file, it will create one

❸ Now, copy the command below in the command prompt and hit ENTER:

sudo nano /etc/ssh/sshd_config

❹ Edit the file like below:

PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
PasswordAuthentication no
ChallengeResponseAuthentication no

❺ Press CTRL + O, then Y to save the file; To exit press CTRL + X.

❻ Restart ssh service by typing the command below and pressing ENTER:

sudo service ssh restart

Output >

Here, you can see the screenshot of the command prompt.Creating the authorized_keys file and restarting ssh serviceAnd here is how I edited the .sshd_config file. Remember sometimes you will find those lines in the file. You will just need to edit them. But at times, maybe you will need to add them by yourself.Editing the sshd_config fileIf you want to enable password-based authentication again, you will need to put the value “yes” for PasswordAuthentication.Turning of password-based authenticationNow see, it is only asking for the passphrase for the key while logging into the server.Logging into the server using the ssh command in Linux

Example 14: Send Compressed Data Using the “ssh” Command in Linux

The ssh command in Linux provides an option to send compressed data. This can be useful while using a poor internet connection. you need to use the option -C” for that purpose. Now do the following:

Steps to Follow >

❶ At first, open Windows Powershell.

❷ Copy the command below in the command prompt:

ssh -C [email protected]

❸ Now press ENTER from the keyboard.

Output >

Login using the option -C” is similar to a normal login. You need to provide the passphrase, password as usual.Sending compressed data using the ssh command in Linux

Example 15: Enable Verbose Mode in the “ssh” Command in Linux

The option -v” in the ssh command in Linux is used to show detailed information while connecting to a server. This can be helpful if you want to figure out what is going wrong. And you can also decide to what depth, you want to get the information. You can use “-v” or “-vvv” for more information. Now follow the steps below with me:

Steps to Follow >

❶ Go to the start menu of your Windows OS and open PowerShell from there.

❷ Copy the following command in the Powershell:

sudo -v [email protected]

❸ Press ENTER from your keyboard.

Output >

As you can see, every step of the connection process is listed one by one.Enabling the verbose mode in the ssh command in Linux


Similar Readings


Example 16: Create a Banner Message

In this example, I will show you how to set up a banner message. The banner message is shown when someone tries to log into a server using the ssh command in Linux. You can use it to show a warning text. To show banner message you will need to edit the .sshd_config file. You can do that by following the steps below:

Steps to Follow >

❶ Press CTRL + ALT + T to launch an Ubuntu Terminal.

❷ Write the following command in the command prompt to create a file containing banner message:

echo “WELCOME TO OUR SERVER” >> banner_message
Note: Here “banner_message” is the name of our file

❸ Use the command below to open .sshd_config file:

sudo nano /etc/ssh/sshd_config

❹ Edit the .sshd_config file like the below:

Banner /home/walid/banner_message
Note: Provide the file location from the root directory, not the home directory

❺ Press CTRL + O and Y to save the file; press CTRL + X to exit.

❻ Now restart the ssh service by typing the command below:

sudo service ssh restart

❼ Then press ENTER from the keyboard.

Output >

I have attached two images to help you with the process. The first image shows you how to run necessary commands in the command prompt.Creating a banner message fileAnd the second image shows how to edit the .sshd_config file.Adding link of the banner message file in the ssh in Linux config fileNow see, when I am trying to log into the server, it is showing the message “WELCOME TO OUR SERVER.Accessing the server using the ssh command in Linux

Example 17: Disable Root Login

In this example, I will show you how to disable root login. It is a safety measure. To do that you need to edit the .sshd_config file and restart the ssh service as usual. You can do all those by following the steps below:

Steps to Follow >

❶ At first, open the Ubuntu Terminal.

❷ Write the following command in the Terminal:

sudo nano /etc/ssh/sshd_config

❸ Now edit the file like below:

PermitRootLogin no

Save and exit the file at once by pressing CTRL + X and then ENTER.

❺ Then copy the following command and press ENTER:

sudo service ssh restart

Output >

In the first command in the image below, I opened the .sshd_config file and in the second one, I restarted ssh service.Opening the sshd_config fileAnd, here I have shown you how to edit the file. Most of the time the line is already there. You just need to remove the hash (#) from the beginning.Editing the config file of the ssh command in LinuxHere, I tried to log in as a root user and it is showing “Permission denied”.Root login using the ssh command in Linux

Example 18: Remotely Access Your Server Using the “ssh” Command in Linux

Now I will show how you can access your server from a remote location. However, remember, exposing your server to the world may attract some unwanted attention. So, be careful.

Now, if I want to access my server, the server needs to have an IP address of its own. To do that I will set the network connection of my Ubuntu to Bridged instead of NAT from the VMWare Workstation settings. Finally, I will allow my Windows Firewall to communicate through port 22. I have explained all of them in simple steps, follow them with me:

Note: If you are using a router, you might need to forward port 22 from your router settings to allow connection outside LAN (Local Area Network). Also, use a VPN to secure your server

Steps to Follow >

❶ Open your VMware Workstation.

❷ Click on your Ubuntu, then VM, and Settings.

❸ Then click on Network Adapter and set the Network Connection to Bridged.

❹ Now open Command Prompt from the start menu of your Windows OS as administrator.

❺ Copy the following command to add a new rule to allow connection through port 22 and press ENTER:

netsh advfirewall firewall add rule name="OpenSSH" dir=in action=allow protocol=TCP localport=22

❻ (Optional) To delete the rule anytime, copy the following command and hit ENTER:

netsh advfirewall firewall delete rule name="OpenSSH" protocol=TCP dir=in localport=22

Output >

Here I have added some screenshots to help you better understand the process. At first, I opened the corresponding settings of my Ubuntu (sever).Opening setting menu in VMware WorkstationThen I clicked on Network Adapter and make the connection Bridged.Setting bridged connectionHere I opened the Command Prompt as “Run as administrator” and wrote the command of step 6 to add a new Inbound Rule.Adding new rule in Windows for connection through port 22I also attached this image so that you can remove the “OpenSSHrule without any hassle.Deleting a rule in WindowsTo demonstrate that remote communication is actually working, I used my friend’s computer. And see, I logged into my server!Accessing the server from remote location using the ssh command in Linux

Conclusion

The ssh command in Linux is very important if you are interested in networking. Also, you can use it in your regular life as well. If you find it difficult to grasp at first, don’t worry. I hope practicing all the examples above will help you understand the ssh command in Linux better.


Similar Readings

Rate this post
Walid Al Asad

Hello Everyone! I am Walid Al Asad. Currently, I am working at a tech company named Softeko as a Linux Content Developer Executive. I live in Dhaka, Bangladesh. I have completed my BSc. in Mechanical Engineering from Bangladesh University of Engineering and Technology (BUET). You can find me on LinkedIn, and ResearchGate. Read Full Bio

Leave a Comment