我有一个 OS X 10.6.8 安装,允许 ssh 进入(但不一定能走得更远)。然而,当我测试使用 ssh 从此安装中退出时,它在两个实例中都失败了,无论是使用Permission denied (publickey,password)还是Permission denied (publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive).
对连接进行清理调试
ssh -v muser@IP_ADDRESS
OpenSSH_5.2p1, OpenSSL 0.9.8y 5 Feb 2013
debug1: Reading configuration data /Users/muser/.ssh/config
debug1: Applying options for *
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to IP_ADDRESS [IP_ADDRESS] port 22.
debug1: Connection established.
debug1: identity file /Users/muser/.ssh/id_rsa type 1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.2
debug1: match: OpenSSH_5.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'IP_ADDRESS' is known and matches the RSA host key.
debug1: Found key in /Users/muser/.ssh/known_hosts:3
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering public key: /Users/muser/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: No more authentication methods to try.
Permission denied (publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive).
甚至
MacMini2:~ muser$ ssh muser@SELF_IP
Permission denied (publickey,keyboard-interactive).
感觉就像公钥是不是被罚下……
ssh-add -l
返回The agent has no identities。(我不确定这是什么意思,因为另一个安装上的相同命令返回无身份错误,但是能ssh 到其他机器。)
.ssh目录并ls -l返回
-rw------- 1 muser staff 818 Aug 27 10:49 authorized_keys
-rw-r--r-- 1 muser staff 399 Sep 1 22:39 authorized_keys2
-rw-r--r--@ 1 muser staff 266 Sep 20 09:15 config
-rw------- 1 muser staff 1743 Sep 20 09:08 id_rsa
-rw-r--r-- 1 muser staff 412 Sep 20 09:08 id_rsa.pub
-rw-r--r-- 1 muser staff 1589 Sep 20 08:52 known_hosts
运行了下列操作:
chmod 700 ~/.ssh
chmod 600 ~/.ssh/id_rsa
Keychain Access 指示两组钥匙串(kerberos 和 systemdefault)均显示 1024 位加密。我通过ssh-keygenRSA 2048 位密钥集创建了该密钥,但系统显然看不到它。
我如何从该安装中运行传出的 ssh?