免费注册 查看新帖 |

Chinaunix

  平台 论坛 博客 文库
论坛 操作系统 AIX ssh 证书登录不成功,请问ssh 的log 文件在哪?
最近访问板块 发新帖
查看: 6243 | 回复: 0
打印 上一主题 下一主题

[学习求职] ssh 证书登录不成功,请问ssh 的log 文件在哪? [复制链接]

okwiner

论坛徽章:
0
跳转到指定楼层
1 [收藏(0)] [报告]
发表于 2011-07-01 15:36 |只看该作者 |倒序浏览
本帖最后由 okwiner 于 2011-07-01 15:43 编辑

大家好,

我在一下版本的Aix上安装了openssh 5.2.0.53

5.3.9       
5300-09-03-0918
5300-06-01-0000
5300-07-00-0000
5.3.6

遇到了证书认证无法登陆成功的问题。从Linux 登录到 Aix 5.3,使用密码认证可以登录,但是使用证书认证就报 错“连接被关闭 by IP”

请问在Aix 5.3上 sshd 的log在那个路径下面?  怎么启动sshd才能进入debug log 模式?

下面是我预计到的错误信息,我确定我的公钥文件的部署肯定没有问题,因为检查了好几天了,而且所有的5.3都不行,6.1没有问题,linux也没有问题
  1. [ti@SHSHSH1 bk]$ ssh -i id_rsa 11.2.13.6  -vvv
  2. OpenSSH_4.3p2, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
  3. debug1: Reading configuration data /etc/ssh/ssh_config
  4. debug1: Applying options for *
  5. debug2: ssh_connect: needpriv 0
  6. debug1: Connecting to 11.2.13.6 [11.2.13.6] port 22.
  7. debug1: Connection established.
  8. debug3: Not a RSA1 key file id_rsa.
  9. debug2: key_type_from_name: unknown key type '-----BEGIN'
  10. debug3: key_read: missing keytype
  11. debug3: key_read: missing whitespace
  12. debug3: key_read: missing whitespace
  13. debug3: key_read: missing whitespace
  14. debug3: key_read: missing whitespace
  15. debug3: key_read: missing whitespace
  16. debug3: key_read: missing whitespace
  17. debug3: key_read: missing whitespace
  18. debug3: key_read: missing whitespace
  19. debug3: key_read: missing whitespace
  20. debug3: key_read: missing whitespace
  21. debug3: key_read: missing whitespace
  22. debug3: key_read: missing whitespace
  23. debug3: key_read: missing whitespace
  24. debug3: key_read: missing whitespace
  25. debug3: key_read: missing whitespace
  26. debug3: key_read: missing whitespace
  27. debug3: key_read: missing whitespace
  28. debug3: key_read: missing whitespace
  29. debug3: key_read: missing whitespace
  30. debug3: key_read: missing whitespace
  31. debug3: key_read: missing whitespace
  32. debug3: key_read: missing whitespace
  33. debug3: key_read: missing whitespace
  34. debug3: key_read: missing whitespace
  35. debug3: key_read: missing whitespace
  36. debug2: key_type_from_name: unknown key type '-----END'
  37. debug3: key_read: missing keytype
  38. debug1: identity file id_rsa type 1
  39. debug1: loaded 1 keys
  40. debug1: Remote protocol version 2.0, remote software version OpenSSH_5.2
  41. debug1: match: OpenSSH_5.2 pat OpenSSH*
  42. debug1: Enabling compatibility mode for protocol 2.0
  43. debug1: Local version string SSH-2.0-OpenSSH_4.3
  44. debug2: fd 3 setting O_NONBLOCK
  45. debug1: SSH2_MSG_KEXINIT sent
  46. debug1: SSH2_MSG_KEXINIT received
  47. debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
  48. debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
  49. debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
  50. debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
  51. debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
  52. debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
  53. debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
  54. debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
  55. debug2: kex_parse_kexinit:
  56. debug2: kex_parse_kexinit:
  57. debug2: kex_parse_kexinit: first_kex_follows 0
  58. debug2: kex_parse_kexinit: reserved 0
  59. debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
  60. debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
  61. debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
  62. debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
  63. debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
  64. debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
  65. debug2: kex_parse_kexinit: none,zlib@openssh.com
  66. debug2: kex_parse_kexinit: none,zlib@openssh.com
  67. debug2: kex_parse_kexinit:
  68. debug2: kex_parse_kexinit:
  69. debug2: kex_parse_kexinit: first_kex_follows 0
  70. debug2: kex_parse_kexinit: reserved 0
  71. debug2: mac_init: found hmac-md5
  72. debug1: kex: server->client aes128-cbc hmac-md5 none
  73. debug2: mac_init: found hmac-md5
  74. debug1: kex: client->server aes128-cbc hmac-md5 none
  75. debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
  76. debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
  77. debug2: dh_gen_key: priv key bits set: 117/256
  78. debug2: bits set: 506/1024
  79. debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
  80. debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
  81. debug3: check_host_in_hostfile: filename /usr/tideway/.ssh/known_hosts
  82. debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
  83. debug3: check_host_in_hostfile: filename /usr/tideway/.ssh/known_hosts
  84. debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
  85. debug2: no key of type 0 for host 11.2.13.6
  86. debug3: check_host_in_hostfile: filename /usr/tideway/.ssh/known_hosts2
  87. debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
  88. debug3: check_host_in_hostfile: filename /usr/tideway/.ssh/known_hosts
  89. debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
  90. debug2: no key of type 2 for host 11.2.13.6
  91. The authenticity of host '11.2.13.6 (11.2.13.6)' can't be established.
  92. RSA key fingerprint is 95:c8:eb:7b:26:d8:d7:77:1a:08:2e:fc:b5:ee:12:b6.
  93. Are you sure you want to continue connecting (yes/no)? yes
  94. Warning: Permanently added '11.2.13.6' (RSA) to the list of known hosts.
  95. debug2: bits set: 518/1024
  96. debug1: ssh_rsa_verify: signature correct
  97. debug2: kex_derive_keys
  98. debug2: set_newkeys: mode 1
  99. debug1: SSH2_MSG_NEWKEYS sent
  100. debug1: expecting SSH2_MSG_NEWKEYS
  101. debug2: set_newkeys: mode 0
  102. debug1: SSH2_MSG_NEWKEYS received
  103. debug1: SSH2_MSG_SERVICE_REQUEST sent
  104. debug2: service_accept: ssh-userauth
  105. debug1: SSH2_MSG_SERVICE_ACCEPT received
  106. debug2: key: id_rsa (0x2ad3e320cbc0)
  107. debug1: Authentications that can continue: publickey,password,keyboard-interactive
  108. debug3: start over, passed a different list publickey,password,keyboard-interactive
  109. debug3: preferred gssapi-with-mic,publickey,keyboard-interactive,password
  110. debug3: authmethod_lookup publickey
  111. debug3: remaining preferred: keyboard-interactive,password
  112. debug3: authmethod_is_enabled publickey
  113. debug1: Next authentication method: publickey
  114. debug1: Offering public key: id_rsa
  115. debug3: send_pubkey_test
  116. debug2: we sent a publickey packet, wait for reply
  117. Connection closed by 11.2.13.6
复制代码
ssh, ssh
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则 发表回复

  

北京盛拓优讯信息技术有限公司. 版权所有 京ICP备16024965号-6 北京市公安局海淀分局网监中心备案编号:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年举报专区
中国互联网协会会员  联系我们:huangweiwei@itpub.net
感谢所有关心和支持过ChinaUnix的朋友们 转载本站内容请注明原作者名及出处

清除 Cookies - ChinaUnix - Archiver - WAP - TOP