{"id":5347,"date":"2022-10-31T10:42:52","date_gmt":"2022-10-31T02:42:52","guid":{"rendered":"https:\/\/ixyzero.com\/blog\/?p=5347"},"modified":"2022-10-31T10:42:52","modified_gmt":"2022-10-31T02:42:52","slug":"ssh%e5%bc%82%e5%b8%b8%e7%99%bb%e5%bd%95%e9%97%ae%e9%a2%98%e5%a4%84%e7%90%86%e8%ae%b0%e5%bd%95","status":"publish","type":"post","link":"https:\/\/ixyzero.com\/blog\/archives\/5347.html","title":{"rendered":"ssh\u5f02\u5e38\u767b\u5f55\u95ee\u9898\u5904\u7406\u8bb0\u5f55"},"content":{"rendered":"\n

=Start=<\/p>\n\n\n\n

\u7f18\u7531\uff1a<\/h4>\n\n\n\n

\u7b80\u5355\u8bb0\u5f55\u4e00\u4e0b\u524d\u6bb5\u65f6\u95f4\u51fa\u73b0\u7684ssh\u767b\u5f55\u5f02\u5e38\u95ee\u9898\u7684\u5904\u7406\u529e\u6cd5\uff0c\u65b9\u4fbf\u4ee5\u540e\u53c2\u8003\u3002<\/p>\n\n\n\n

\u6b63\u6587\uff1a<\/h4>\n\n\n\n

\u53c2\u8003\u89e3\u7b54\uff1a<\/h5>\n\n\n\n

\u73b0\u8c61\uff1assh\u7a81\u7136\u767b\u5f55\u4e0d\u4e0a\u4e91\u673a\u5668\u4e86<\/p>\n\n\n\n

$ ssh ixyzero@172.28.11.23\nixyzero@172.28.11.23: Permission denied (publickey,keyboard-interactive).\n\n$ ssh -vv ixyzero@172.28.11.23<\/code><\/pre>\n\n\n\n
\u6392\u67e5\u8fc7\u7a0b\uff1a<\/p>\n\n\n\n
  1. \u901a\u8fc7web\u63a7\u5236\u53f0\u767b\u5f55\u5176\u5b83\u8d26\u53f7\u8fdb\u884c\u67e5\u770b<\/li><\/ol>\n\n\n\n
    systemctl status sshd\nsshd -t<\/code><\/pre>\n\n\n\n
    1. \u53d1\u73b0\u9519\u8bef\u63d0\u793a\uff1a
      error: Could not load host key: \/etc\/ssh\/ssh_host_dsa_key<\/strong><\/li><\/ol>\n\n\n\n
      \u627e\u5230\u76f8\u5173\u6587\u7ae0\u8bf4\u660e\uff1a<\/p>\n\n\n\n
      $ ls -al \/etc\/ssh\/ssh*key \n$ sudo rm -r \/etc\/ssh\/ssh*key\n\n$ sudo systemctl restart sshd\n# \u6216\n$ sudo ssh-keygen -t rsa -f \/etc\/ssh\/ssh_host_rsa_key\n$ sudo ssh-keygen -t dsa -f \/etc\/ssh\/ssh_host_dsa_key\n$ sudo ssh-keygen -t ecdsa -f \/etc\/ssh\/ssh_host_ecdsa_key \n\n$ ls -al \/etc\/ssh\/ssh*key <\/code><\/pre>\n\n\n\n
      1. \u7136\u540e\u518d\u5c1d\u8bd5\u767b\u5f55\uff0c\u4f9d\u65e7\u62a5\u9519\uff0c\u4e0d\u8fc7\u6362\u4e86\u4e00\u4e2a\u9519\u8bef\u63d0\u793a\uff1a
        sshd user xxx not allowed because account is locked<\/strong><\/li>
      2. \u53c8\u627e\u5230\u76f8\u5173\u8bf4\u660e\uff0c\u8fdb\u884c\u5c1d\u8bd5<\/li><\/ol>\n\n\n\n
        # \u66f4\u65b0 sshd \u7684\u914d\u7f6e\u6587\u4ef6\n# vim \/etc\/ssh\/sshd_config\n+ UsePAM yes\n# PasswordAuthentication yes \u5b89\u88c5\u65f6\u4e00\u822c\u4e5f\u9ed8\u8ba4\u6709\u8fd9\u4e2a\u914d\u7f6e\uff0c\u5982\u679c\u6ca1\u4e86\u4e5f\u9700\u8981\u52a0\u4e0a\n\n# systemctl restart sshd\n# systemctl status sshd\n\n\u6216\n\n# \u76f4\u63a5\u4fee\u6539 \/etc\/shadow \u6587\u4ef6\uff08\u8fd9\u4e2a\u529e\u6cd5\u6682\u672a\u5b9e\u9645\u6d4b\u8bd5\uff09\n# sed -i s\/my-username:!\/\"my-username:*\"\/g \/etc\/shadow<\/code><\/pre>\n\n\n\n
        \u95ee\u9898\u89e3\u51b3\u3002<\/p>\n\n\n\n
        \u53c2\u8003\u94fe\u63a5\uff1a<\/h5>\n\n\n\n
        Linux\u6709\u95ee\u5fc5\u7b54\uff1a\u5982\u4f55\u4fee\u590d\u201csshd error: could not load host key\u201d
        https:\/\/linux.cn\/article-4226-1.html<\/a><\/p>\n\n\n\n
        How to fix “sshd error: could not load host key”
        https:\/\/www.xmodulo.com\/sshd-error-could-not-load-host-key.html<\/a><\/p>\n\n\n\n
        User username not allowed because account is locked #35
        https:\/\/github.com\/camptocamp\/puppet-accounts\/issues\/35<\/a><\/p>\n\n\n\n
        ssh\u514d\u5bc6\u5931\u8d25\uff0c\u62a5\u9519user not allowed because account is locked
        https:\/\/www.cnblogs.com\/mingfan\/p\/13818902.html<\/a><\/p>\n\n\n\n
        ssh\u62a5user not allowed because account is locked\u9519\u8bef
        https:\/\/blog.csdn.net\/weixin_41875646\/article\/details\/84777346<\/a><\/p>\n\n\n\n
        =END=<\/p>\n","protected":false},"excerpt":{"rendered":"
        =Start= \u7f18\u7531\uff1a \u7b80\u5355\u8bb0\u5f55\u4e00\u4e0b\u524d\u6bb5\u65f6\u95f4\u51fa\u73b0\u7684ssh\u767b\u5f55\u5f02\u5e38\u95ee\u9898\u7684\u5904\u7406\u529e\u6cd5\uff0c\u65b9\u4fbf\u4ee5\u540e\u53c2\u8003\u3002 \u6b63\u6587\uff1a \u53c2\u8003\u89e3 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[23,11],"tags":[30,153,263],"class_list":["post-5347","post","type-post","status-publish","format-standard","hentry","category-knowledgebase-2","category-linux","tag-linux","tag-ssh","tag-sshd"],"views":1894,"_links":{"self":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/5347","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/comments?post=5347"}],"version-history":[{"count":1,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/5347\/revisions"}],"predecessor-version":[{"id":5348,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/5347\/revisions\/5348"}],"wp:attachment":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/media?parent=5347"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/categories?post=5347"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/tags?post=5347"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}