Back to Question Center
0

Semalt ya sa don kalmar sirri bayan daɗa maɓallin jama'a na SSH zuwa uwar garke

1 answers:

Ina ƙoƙari na saita saitin ajiya a kan uwar garken yanar gizo na Dreamhost ta bin "Saita: Ga umarnin Semalt" a nan. Ina fama da wahalar shigar da dama ga jama'a a cikin uwar garke.

Tsayar da nasara ta ƙirƙirar maɓallin jama'a na, Na yi gudu da umurnin da ya biyo baya:

     cat ~ / ssh; cat >> ~ /. ssh / permission_keys "    

maye gurbin masu dacewa da masu dacewa tare da daidaitattun lambobin.

Duk abin da ya yi daidai da kyau - commercial bar table. Asusun ya nema don kalmar sirri, kuma, kamar yadda zan iya fadawa, kashe umurnin. Babu shakka ~ /. ssh / permission_keys fayil akan uwar garke.

Matsalar: Lokacin da na gwada SSH a cikin uwar garken, har yanzu yana tambaya don kalmar sirri. Abinda nake fahimta shi ne cewa kada a nemi karin kalmar sirri ba 9. 8r 8 Dec 2011 debug1: Bayanan nazarin karatu / sauransu / ssh_config debug1: / sauransu / ssh_config line 20: Aiwatar da zaɓuɓɓuka don * debug1: / sauransu / ssh_config line 53: Aiwatar da zaɓuɓɓuka don * debug1: Haɗa zuwa [SERVER URL] [[SERVER IP]] tashar jiragen ruwa 22. debug1: Haɗin kafa ya kafa. debug1: ainihi fayil / Masu amfani / michaeleckert /. ssh / id_rsa type -1 debug1: ainihi fayil / Masu amfani / michaeleckert /. ssh / id_rsa-cert type -1 debug1: ainihi fayil / Masu amfani / michaeleckert /. ssh / id_dsa type -1 debug1: ainihi fayil / Masu amfani / michaeleckert /. ssh / id_dsa-cert type -1 debug1: Tsaida yanayin daidaitawa don yarjejeniya 2. 0 debug1: Jagora ta yankin SSH-2. 0-OpenSSH_6. 2 debug1: Tsarin layi na 2 5p1 Debian-6 + squeeze3 pat OpenSSH_5 * debug1: SSH2_MSG_KEXINIT aika debug1: SSH2_MSG_KEXINIT samu debug1: kex: server-> abokin ciniki aes128-ctr hmac-md5 babu debug1: kex: abokin ciniki-> uwar garke aes128-ctr hmac-md5 babu debug1: SSH2_MSG_KEX_DH_GEX_REQUEST (1024 <1024 <8192) aika debug1: tsammanin SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT aika debug1: sa ran SSH2_MSG_KEX_DH_GEX_REPLY debug1: Maɓallin mai watsa shiri uwar garken: RSA [SUNA NUMBERS DA LITTAFI SEPARATED BY SEMI-COLONS] debug1: Mai watsa shiri '[SERVER URL]' an sani kuma yayi daidai da maɓallin karɓar RSA. debug1: Maɓalli a cikin / Masu amfani / michaeleckert /. ssh / sani_hosts: 2 debug1: ssh_rsa_verify: sa hannu daidai debug1: SSH2_MSG_NEWKEYS aika debug1: sa ran SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS samu debug1: Jirgin ba'a yarda ta uwar garken debug1: SSH2_MSG_SERVICE_REQUEST aika debug1: SSH2_MSG_SERVICE_ACCEPT karbi debug1: Gaskiyar da za ta iya ci gaba: ƴan jama'a, kalmar sirri debug1: Hanyar ingantaccen ƙwarewa: ɗan adam debug1: Gwada maɓallin keɓaɓɓen: / Masu amfani / michaeleckert /. ssh / id_rsa debug1: Gwada maɓallin keɓaɓɓen: / Masu amfani / michaeleckert /. ssh / id_dsa debug1: Hanyar tabbatarwa ta gaba: kalmar sirri [USER] @ [SERVER URL] kalmar sirri: debug1: Gaskiyanci ya yi nasarar (kalmar sirri). Tabbatar da shi zuwa [SERVER URL] ([[SERVER IP]]: 22). debug1: tashar 0: sabon [abokin ciniki-zaman] debug1: Neman karin-zaman-zaman @ openssh. com debug1: Shigar da wani taro mai hulɗa. debug1: Aika yanayi. debug1: Aika LANG LANG = en_US. Duk ayyukan za a iya shiga ta hanyar HostingHost Web Hosting. Sunan karshe: Sun Nov 3 12:04:21 2013 daga [MY IP] [[GAME DA KURANTA]] $

February 5, 2018

Wasu abubuwa don bincika:

A kan uwar garken:

  1. Canji ~ /. ssh / permission_keys iznin fayil ta amfani da:
    chmod 600 ~ /. ssh / permission_keys

  2. Canji ~ /. ssh / permission_keys mai yin amfani da fayil ɗin:
    yankakke 'whoami` ~ /. ssh / permission_keys

  3. Bincika cewa ~ /. ssh / permission_keys fayil ba komai ba ne:
    ( cat ~ /. ssh / permission_keys ya kamata nuna wasu fitarwa)

(Matakan daya da biyu suna bada shawarar a cikin OpenSSH FAQ . )

A kan abokin ciniki

  1. Shin kuna shiga tare da asusun mai amfani daya kamar yadda kuka ƙara maɓallin don a kan uwar garke? (i. e. Shin mai amfani a ssh USER @ ip umurni kake amfani da su don haɗi da wannan a matsayin mai amfani a cikin umarnin da ka kwafe fayil ɗin zuwa uwar garken da?)

  2. Haɗa ta amfani da hanyar SSH verbose ( ssh-mai amfani @ ip ) kuma shirya adireshin ku don ƙara kayan aiki (tare da kowane adireshin IP, sunayen mai amfani da sunaye masked).

Yana fitar da bayani mai sauqi qwarai: sake suna na biyu fayilolin maɓallin jama'a zuwa id_rsa da id_rsa. pub . Ba ni da masaniya me yasa wannan shine abin da ake kira su. Da fatan a sake jin dadi don gyara wannan amsar don sanya shi ƙarin bayani.