Linux

Using the SSH Config File

Gamunu Balagalla

Mar 18, 2023 — 3 min read

The SSH config file is a configuration file for the SSH client that allows you to customize the behavior of your SSH connections. You can use the SSH config file to define aliases for hosts, set up SSH tunnels, specify custom port numbers, and more.

Here’s how you can use the SSH config file:

The SSH config file is usually located at ~/.ssh/config. You can create this file if it doesn’t exist or edit it with your preferred text editor.

Define host aliases

You can define aliases for hosts in the config file. For example, if you frequently connect to a remote server with a long hostname, you can define an alias for it like this:

Host server1
    Hostname along-server-name.com

Host 192.168.1.1
    Host 192.168.1.1

Now you can use the ssh command with the server1 alias instead of the full hostname.

Specify custom port numbers

You can specify custom port numbers for hosts in the config file. For example, if your SSH server is running on a non-standard port, you can specify the port number like this:

Host server1
    Hostname along-server-name.com
    Port 3325

Set up SSH tunnels

You can use the SSH config file to set up SSH tunnels. For example, if you want to tunnel all traffic from your local port 8080 to a remote server’s port 80, you can set up a tunnel like this:

Host server1
    Hostname along-server-name.com
    LocalForward 8080 localhost:80

Now any traffic to localhost:8080 on your local machine will be forwarded to myserver.com:80.

Set up public key authentication

You can use the SSH config file to specify the identity file to use for public key authentication. For example:

Host server1
    Hostname along-server-name.com
    User myusername
    IdentityFile ~/.ssh/my_private_key

will tell SSH to use the my_private_key file in your ~/.ssh directory for authentication when connecting to myserver.com.

File and Directory permissions

The SSH configuration file is typically located at ~/.ssh/config and can be accessed and modified by the user who owns the file. By default, the file permissions should be set to 600 (-rw-------) so that only the owner can read or modify the file.

To set the correct permissions for the SSH configuration file, you can use the chmod command like this:

chmod 600 ~/.ssh/config

This will set the file permissions to allow only the owner to read or modify the file.

It’s important to set the correct permissions for the SSH configuration file to prevent unauthorized access or modification of the file, which could potentially compromise your SSH connections. Additionally, it’s important to ensure that the parent directory of the SSH configuration file has secure permissions as well. The parent directory should have permissions set to 700 (-rwx------) allow only the owner to access it. You can set the correct permissions for the parent directory using the chmod command this:

chmod 700 ~/.ssh

My apologies for the confusion. The SSH configuration file also has its own set of permissions that determine who can read or modify the file. Here’s what you should know about SSH configuration file permissions:

To set the correct permissions for the SSH configuration file, you can use the chmod command like this:

chmod 600 ~/.ssh/config

This will set the file permissions to allow only the owner to read or modify the file.

chmod 700 ~/.ssh

This will set the parent directory’s permissions to allow only the owner to access it.

In summary, to ensure the security of your SSH configuration file, you should set the file permissions to 600 and the parent directory permissions to 700 use the chmod command.

The SSH config file is a simple way that allows you to customize your SSH connections. By defining host aliases, specifying custom port numbers, setting up SSH tunnels, and public key authentication.

Remember to always set the correct permissions for both the SSH config file and its parent directory to prevent unauthorized access or modification.