SSH：权限被拒绝（公钥，gssapi-with-mic，密码）

================================================== ==================

更新：原来在host2上的sshd的configuration不会允许密码login。 感谢人们回答了这个问题。

================================================== ==================

情景：与我的大学项目公司合作。 我需要首先使用PuTTy SSH进入host1 ，然后从那里通过SSH进入host2 （见下文）。 我在host2上获得了一个用户名和密码。

• 使用本地工具来监视远程日志
• 我怎样才能recursion地bzip2所有非BZIP的文件？
• 检查一个path是否超过Unix域套接字的最大值
• 在服务器之间复制SSH ID
• 作为Windows服务的SSH隧道

我根本没有访问host2，所以我不知道它的sshd_config 。

当我尝试从host1进入host2时发生了这种情况：

 ff@host1:~$ ssh -v host2 OpenSSH_5.1p1 Debian-5, OpenSSL 0.9.8g 19 Oct 2007 debug1: Reading configuration data /home/ff/.ssh/config debug1: Applying options for * debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to host2 [192.*.*.*] port 22. debug1: Connection established. debug1: identity file /home/ff/.ssh/identity type -1 debug1: identity file /home/ff/.ssh/id_rsa type -1 debug1: identity file /home/ff/.ssh/id_dsa type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_4.3 debug1: match: OpenSSH_4.3 pat OpenSSH_4* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.1p1 Debian-5 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'sd01' is known and matches the RSA host key. debug1: Found key in /home/ff/.ssh/known_hosts:1 debug1: ssh_rsa_verify: signature correct debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey,gssapi-with-mic,password debug1: Next authentication method: gssapi-with-mic debug1: Unspecified GSS failure. Minor code may provide more information No credentials cache found debug1: Unspecified GSS failure. Minor code may provide more information No credentials cache found debug1: Unspecified GSS failure. Minor code may provide more information debug1: Next authentication method: publickey debug1: Trying private key: /home/ff/.ssh/identity debug1: Trying private key: /home/ff/.ssh/id_rsa debug1: Trying private key: /home/ff/.ssh/id_dsa debug1: Next authentication method: password ff@sd01's password: debug1: Authentications that can continue: publickey,gssapi-with-mic,password Permission denied, please try again. ff@sd01's password: debug1: Authentications that can continue: publickey,gssapi-with-mic,password Permission denied, please try again. ff@sd01's password: debug1: Authentications that can continue: publickey,gssapi-with-mic,password debug1: No more authentication methods to try. Permission denied (publickey,gssapi-with-mic,password). 

和我的/home/ff/.ssh/config：

 Host * # ForwardAgent no # ForwardX11 no # ForwardX11Trusted yes # RhostsRSAAuthentication no # RSAAuthentication yes # HostbasedAuthentication no BatchMode no # CheckHostIP yes # AddressFamily any # ConnectTimeout 0 # StrictHostKeyChecking ask # IdentityFile ~/.ssh/identity # IdentityFile ~/.ssh/id_rsa # IdentityFile ~/.ssh/id_dsa # Port 22 # Protocol 2,1 # AuthorizedKeysFile .ssh/authorized_keys # Cipher 3des # Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc # EscapeChar ~ # Tunnel no # TunnelDevice any:any # PermitLocalCommand no SendEnv LANG LC_* HashKnownHosts yes GSSAPIAuthentication yes GSSAPIDelegateCredentials no 

我不知道在去公司之前有什么可以做的。

 ssh server -l user -o "PubkeyAuthentication=no" 

 PermitRootLogin yes 

  chmod 700 .ssh 

  chmod 600 .ssh/authorized_keys 

 restorecon -r -vv .ssh/authorized_keys