sshdclosures“没有支持的密钥交换algorithm”错误

sshd的

$ /usr/sbin/sshd -f testconfig -p 22025 -d debug1: sshd version OpenSSH_5.2p1 debug1: private host key: #0 type 0 RSA1 debug1: read PEM private key done: type RSA debug1: private host key: #1 type 1 RSA debug1: read PEM private key done: type DSA debug1: private host key: #2 type 2 DSA debug1: setgroups() failed: Operation not permitted debug1: rexec_argv[0]='/usr/sbin/sshd' debug1: rexec_argv[1]='-f' debug1: rexec_argv[2]='testconfig' debug1: rexec_argv[3]='-p' debug1: rexec_argv[4]='22025' debug1: rexec_argv[5]='-d' debug1: Bind to port 22025 on 127.0.0.1. Server listening on 127.0.0.1 port 22025. Generating 1024 bit RSA key. RSA key generation complete. debug1: fd 4 clearing O_NONBLOCK debug1: Server will not fork when running in debugging mode. debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7 debug1: inetd sockets after dupping: 3, 3 Connection from 127.0.0.1 port 58477 debug1: Client protocol version 2.0; client software version OpenSSH_5.5 debug1: match: OpenSSH_5.5 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.2 debug1: privsep_preauth: successfully loaded Seatbelt profile for unprivileged child debug1: list_hostkey_types: No supported key exchange algorithms debug1: do_cleanup debug1: do_cleanup debug1: audit_event: unhandled event 12 

SSH

 $ ssh [email protected] -p 22025 -i ./id_rsa.pub -v OpenSSH_5.5p1, OpenSSL 0.9.8o 01 Jun 2010 debug1: Reading configuration data /Users/dgl/.ssh/config debug1: Reading configuration data /opt/local/etc/ssh/ssh_config debug1: Connecting to 127.0.0.1 [127.0.0.1] port 22025. debug1: Connection established. debug1: identity file ./id_rsa.pub type 1 debug1: identity file ./id_rsa.pub-cert type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_5.2 debug1: match: OpenSSH_5.2 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.5 debug1: SSH2_MSG_KEXINIT sent Connection closed by 127.0.0.1 

ssh_config中

 Protocol 1,2 ListenAddress 127.0.0.1 HostKey ./ssh_host_key HostKey ./ssh_host_rsa_key HostKey ./ssh_host_dsa_key RSAAuthentication yes PubkeyAuthentication yes 

• MPM Prefork，apache2过程太多了？
• 有没有办法在Linux上删除100GB的文件，而不会颠簸IO /负载？
• 运行像CentOS 4.4这样的老版本Linux发行版是否安全？
• 集中sudo sudoers文件？
• Linux的CLI命令〜“这台机器是什么”？

 HostKey ./ssh_host_key 

 HostKey /home/dmitry/ssh_host_key 

 root@wisdom:/etc/ssh# ll total 268K drwxr-xr-x. 2 root root 4.0K Jun 30 06:06 ./ drwxr-xr-x. 128 root root 12K Jun 30 05:15 ../ -rw-r--r--. 1 root root 237K Jun 8 23:30 moduli -rw-r--r--. 1 root root 2.2K Jun 8 23:30 ssh_config -rw-------. 1 root root 4.3K Jun 30 06:03 sshd_config -rw-r-----. 1 root ssh_keys 0 Jun 27 00:46 ssh_host_ecdsa_key -rw-r--r--. 1 root root 0 Jun 27 00:46 ssh_host_ecdsa_key.pub -rw-r-----. 1 root ssh_keys 0 Jun 27 00:46 ssh_host_ed25519_key -rw-r--r--. 1 root root 0 Jun 27 00:46 ssh_host_ed25519_key.pub -rw-r-----. 1 root ssh_keys 0 Jun 27 00:46 ssh_host_rsa_key -rw-r--r--. 1 root root 0 Jun 27 00:46 ssh_host_rsa_key.pub 

 ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key 

 UsePAM yes 

 $ cd /etc/ssh $ restorecon -Rv * 

 Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,[email protected],[email protected],[email protected],aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192 -cbc,aes256-cbc,arcfour,[email protected] KexAlgorithms [email protected],ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1,diffie-hellman-group-exch ange-sha1,diffie-hellman-group1-sha1 HostkeyAlgorithms +ssh-dss 

 fatal: linux_audit_write_entry failed: Permission denied 

 aa-complain /etc/apparmor.d/usr.sbin.sshd