Shravankumar Sirvi's Blog
Secure Access & File Transfer: Mastering SSH and SCP Commands

Secure Access & File Transfer: Mastering SSH and SCP Commands

Shravankumar Sirvi's photo
Shravankumar Sirvi
·

5 min read

Table of contents

SSH

SSH stands for Secure Shell. It is a cryptographic network protocol that enables secure communication between two computers over an insecure network. SSH provides a secure way to access a remote computer or server and allows users to execute commands on the remote machine, transfer files, and perform other network-related tasks securely. It encrypts data sent over the network, protecting it from eavesdropping, tampering, and other security threats. SSH is widely used for remote administration, file transfers, and tunneling, providing a reliable and secure method for accessing and managing remote systems.

To connect a remote server (an AWS EC2 instance) to your local server using SSH, you can follow these steps:

  1. Prepare your AWS EC2 instance:

    • Launch an EC2 instance on AWS if you haven't already done so.

    • Make sure to note down the Public IP address or Public DNS of your EC2 instance.

    • During the creation of your EC2 instance, ensure that you select or create an AWS Key Pair. This key pair will be used for SSH authentication. Save the private key file (.pem) securely on your local server.

  2. Open a terminal on your local server:

    • Open a terminal on your local server from which you want to connect to the EC2 instance.

  3. Use the ssh command:

    • In the terminal on your local server, use the ssh command followed by the username (ec2-user for Amazon Linux instances, ubuntu for Ubuntu instances) and the Public IP address or Public DNS of your EC2 instance. Specify the path to your private key file using the -i option:

        ssh -i /path/to/your/key.pem ec2-user@your_ec2_public_ip

  4. Authenticate:

    • If this is your first time connecting to the EC2 instance, you may be prompted to confirm the server's authenticity. Type yes to continue. Then, you should be connected to the EC2 instance via SSH.

  5. Optional: Run commands on the remote server:

    • Once connected, you can execute commands on the remote server directly from your local server's terminal.

SCP

SCP, or Secure Copy Protocol, is a command-line utility used for securely transferring files between a local and a remote host or between two remote hosts. It provides a secure means of transferring files by encrypting both the authentication information and the data being transferred, thus protecting it from eavesdropping or tampering.

SCP is based on SSH (Secure Shell) protocol and typically uses the same authentication and security mechanisms as SSH. It is commonly used in Unix-like operating systems, including Linux and macOS, to copy files between servers, and it is often used as an alternative to FTP (File Transfer Protocol) for secure file transfers.

SCP allows users to specify both the source and destination of the files being transferred, and it supports both interactive and batch mode operations. It provides a simple and secure way to transfer files over a network, making it a valuable tool for system administrators and developers who need to move files between servers securely.

From Remote server to Local server

  1. Open a terminal on your local server: Open a terminal window on your local server where you want to save the private key file.

  2. Use SCP to copy the private key file from the remote server: Run the SCP command in the terminal on your local server to copy the private key file from the remote server (AWS EC2 instance) to your local server. Replace username with your username on the remote server, remote_host with the hostname or IP address of the remote server, and /path/to/private_key.pem with the path to your private key file on the remote server:

     scp username@remote_host:/path/to/private_key.pem /path/to/local/destination

  3. Authenticate: If this is your first time connecting to the remote server, you may be prompted to confirm the server's authenticity. Type yes to continue. Then, you'll be prompted to enter the password for your username on the remote server.

  4. Confirm the transfer: After authenticating, the private key file will be securely copied from the remote server to your local server. You'll see a progress indicator in the terminal showing the transfer status.

  5. Verify the transfer: Once the transfer is complete, you can verify that the private key file has been copied to the specified destination on your local server.

By following these steps, you can securely transfer a private key from a remote server to your local server using SCP. Make sure to replace username, remote_host, /path/to/private_key.pem, and /path/to/local/destination with the appropriate values for your setup.

From Local server to remote server

  1. Open a terminal on your local server: Open a terminal window on your local server where the private key file is located.

  2. Use SCP to copy the private key file to the remote server: Run the SCP command in the terminal on your local server to copy the private key file to the remote server (AWS EC2 instance). Replace username with your username on the remote server, remote_host with the hostname or IP address of the remote server, /path/to/local/private_key.pem with the path to your private key file on your local server, and /path/to/remote/destination with the path where you want to save the private key file on the remote server:

     scp /path/to/local/private_key.pem username@remote_host:/path/to/remote/destination

  3. Authenticate: If this is your first time connecting to the remote server, you may be prompted to confirm the server's authenticity. Type yes to continue. Then, you'll be prompted to enter the password for your username on the remote server.

  4. Confirm the transfer: After authenticating, the private key file will be securely copied from your local server to the specified destination on the remote server. You'll see a progress indicator in the terminal showing the transfer status.

  5. Verify the transfer: Once the transfer is complete, you can verify that the private key file has been copied to the specified destination on the remote server.

By following these steps, you can securely transfer a private key from your local server to a remote server (e.g., an AWS EC2 instance) using SCP. Make sure to replace username, remote_host, /path/to/local/private_key.pem, and /path/to/remote/destination with the appropriate values for your setup.

Did you find this article valuable?

Support Shravankumar Sirvi by becoming a sponsor. Any amount is appreciated!

Devops#90daysofdevopsLinux