用ssh密钥登录服务器问题

blackthought · 发表于 2010-11-29 17:44:36

[xxx@iPad ~]$ ssh -v root@11.12.8.40
OpenSSH_5.6p1, OpenSSL 1.0.0 29 Mar 2010
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to 11.12.8.40 [11.12.8.40] port 22.
debug1: Connection established.
debug1: identity file /home/xxx/.ssh/id_rsa type -1
debug1: identity file /home/xxx/.ssh/id_rsa-cert type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_4.1
debug1: match: OpenSSH_4.1 pat OpenSSH_4*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.6
debug1: SSH2_MSG_KEXINIT sent

我用id_rsa密钥登录，其他ssh的服务起都可以登录
这台服务器走到ssh2_msg_kexinit sent就卡死了
而在windows下用putty每台机都可以登录

发现能登录的服务器ssh版本为
SSH-2.0-OpenSSH_4.3
SSH-2.0-OpenSSH_4.3
不能登录的服务器ssh版本为
SSH-2.0-OpenSSH_4.1
SSH-2.0-OpenSSH_3.6.1
这个应该是巧合吧

糊涂 · 发表于 2010-11-29 21:16:42

看看远程主机 /etc/ssh/sshd_config 里面的配置

blackthought · 发表于 2010-11-30 16:23:19

服务器日志：

Did not receive identification string from 10.11.22.33
Nov 30 15:29:59 localhost sshd[7550]: fatal: Timeout before authentication for 10.11.22.33

blackthought · 发表于 2010-11-30 16:30:43

Post by 糊涂;2121538
看看远程主机 /etc/ssh/sshd_config 里面的配置

服务器端sshd_config配置如下
SyslogFacility AUTHPRIV
X11Forwarding yes
Subsystem sftp /usr/libexec/openssh/sftp-server
其他都是注释掉的

blackthought · 发表于 2010-11-30 17:07:23

服务器端启动调试模式

[root@localhost init.d]# sshd -d
debug1: sshd version OpenSSH_3.6.1p2
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
socket: Address family not supported by protocol
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
debug1: Server will not fork when running in debugging mode.
Connection from 10.11.22.33 port 11600
debug1: Client protocol version 2.0; client software version OpenSSH_4.3p2
debug1: match: OpenSSH_4.3p2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2
debug1: permanently_set_uid: 74/74
debug1: list_hostkey_types: ssh-rsa,ssh-dss
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: kex: server->client aes128-cbc hmac-md5 none

到这步死掉

		自动登录	找回密码
密码			注册