sshd [复制链接]

论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2004-03-06 14:16 |只看该作者 |倒序浏览

启动信息:
Could not load host key: /etc/ssh/ssh_host_key
Disabling protocol version 1. Could not load host key
Privilege separation user sshd does not exist

/etc/ssh/sshd_config内容如下:
# This is ssh server systemwide configuration file.
#
# $FreeBSD: src/crypto/openssh/sshd_config,v 1.4.2.5 2001/01/18 22:36:53 green E
xp $

Port 22
Protocol 2,1
ListenAddress 192.168.1.1
#ListenAddress ::
HostKey /etc/ssh/ssh_host_key
HostDsaKey /etc/ssh/ssh_host_dsa_key
ServerKeyBits 768
LoginGraceTime 120
KeyRegenerationInterval 3600
PermitRootLogin no
# ConnectionsPerPeriod has been deprecated completely

# After 10 unauthenticated connections, refuse 30% of the new ones, and
# refuse any more than 60 total.
MaxStartups 10:30:60
# Don't read ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd yes
KeepAlive yes

# Logging
SyslogFacility AUTH
LogLevel INFO
#obsoletes QuietMode and FascistLogging

RhostsAuthentication no
#
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
#
RSAAuthentication yes

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes
PermitEmptyPasswords no
# Uncomment to disable s/key passwords
#SkeyAuthentication no
#KbdInteractiveAuthentication yes

# To change Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no

# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes

#UseLogin no

# Uncomment if you want to enable sftp
#Subsystem    sftp /usr/libexec/sftp-server
/etc/ssh/sshd_config: 61 lines, 1541 characters.
localhost# sshd
Could not load host key: /etc/ssh/ssh_host_key
Disabling protocol version 1. Could not load host key
Privilege separation user sshd does not exist
localhost# cat /etc/ssh/sshd_config
# This is ssh server systemwide configuration file.
#
# $FreeBSD: src/crypto/openssh/sshd_config,v 1.4.2.5 2001/01/18 22:36:53 green Exp $

Port 22
Protocol 2,1
ListenAddress 192.168.1.1
#ListenAddress ::
HostKey /etc/ssh/ssh_host_key
HostDsaKey /etc/ssh/ssh_host_dsa_key
ServerKeyBits 768
LoginGraceTime 120
KeyRegenerationInterval 3600
PermitRootLogin no
# ConnectionsPerPeriod has been deprecated completely

# After 10 unauthenticated connections, refuse 30% of the new ones, and
# refuse any more than 60 total.
MaxStartups 10:30:60
# Don't read ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd yes
KeepAlive yes

# Logging
SyslogFacility AUTH
LogLevel INFO
#obsoletes QuietMode and FascistLogging

RhostsAuthentication no
#
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
#
RSAAuthentication yes

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes
PermitEmptyPasswords no
# Uncomment to disable s/key passwords
#SkeyAuthentication no
#KbdInteractiveAuthentication yes

# To change Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no

# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes

#UseLogin no

# Uncomment if you want to enable sftp
#Subsystem    sftp /usr/libexec/sftp-server

/etc/rc.conf的内容如下:

# -- sysinstall generated deltas -- # Sun Feb 29 08:59:16 2004
# Created: Sun Feb 29 08:59:16 2004
# Enable network daemons for user convenience.
# Please make all changes to this file, not to /etc/defaults/rc.conf.
# This file now contains just the overrides from /etc/defaults/rc.conf.
kern_securelevel_enable="NO"
linux_enable="YES"
nfs_reserved_port_only="YES"
sendmail_enable="NONE"
usbd_enable="NO"
network_interfaces="rl0 rl1 lo0"
ifconfig_rl0="inet 211.80.202.140 netmask 255.255.255.0"
ifconfig_rl1="inet 192.168.1.1 netmask 255.255.255.0"
ifconfig_lo0="inet 127.0.0.1"
defaultrouter="211.80.202.254"
gateway_enable="YES"
hostname="localhost"
firewall_enable="YES"
sshd_enable="YES"
#firewall_type="/etc/ipfw.conf"
firewall_script="/etc/rc.firewall"
firewall_type="OPEN"
firewall_quiet="NO"
firewall_logging_enable="YES"

natd_enable="YES"
natd_interface="rl0"
natd_flags="-config /etc/natd.conf"

# -- sysinstall generated deltas -- # Fri Mar  5 11:38:48 2004
moused_enable="YES"

/etc/ssh/下的文件阿
primes                ssh_host_dsa_key       sshd_config
ssh_config             ssh_host_dsa_key.pub