服务器 Gind.cn
  1. 服务器 Gind.cn
  3. SSH:id_rsa不起作用,但如果我重命名它,它的工作原理
Intereting Posts
如何在Windows 2003中更改域“短名称” 我可以使用git将war或java web应用程序部署到Azure中吗? Get-ADUser通过多个OU并过滤结果 在login脚本中设置默认打印机? 使计划任务主动/被动群集感知 ASA站点到站点IPSec vpn到linux ipsec-tools端点在随机一段时间后停止工作 Puppet实现定义的用户 是否可以隐藏输出到浏览器的HTML注释? Amavis和Postfix VirusMails 从同一台服务器上的多个域发送带有Postfix的邮件 “当前策略中允许的AVC无效”是什么意思? Windows 2008 R2共享在重新启动时消失 我能够在不通过L3设备的情况下ping不同子网上的设备。 怎么样? 显示2个用户的SSH / bash'w'命令,但仅列出1个? SELinux上下文

SSH:id_rsa不起作用,但如果我重命名它,它的工作原理

我有这个id_rsa在我的〜/ .ssh文件夹中。 但它只是不authentication。 如果我复制它,并将其重命名为任何不id_rsa,它的作品。 

[qfan@mycomputer .ssh]$ ls -al id_rsa id_rsa_good -rw------- 1 qfan qfan 1766 Dec 3 18:35 id_rsa -rw------- 1 qfan qfan 1766 Nov 20 19:43 id_rsa_good [qfan@mycomputer .ssh]$ sha1sum id_rsa id_rsa_good 8cc7f68170038b184bba0541be7d105bb36f7d11 id_rsa 8cc7f68170038b184bba0541be7d105bb36f7d11 id_rsa_good [qfan@mycomputer .ssh]$ ssh localhost -i id_rsa qfan@localhost's password: [qfan@mycomputer .ssh]$ ssh localhost -i id_rsa_good Enter passphrase for key 'id_rsa_good': Last login: Tue Dec 3 18:46:46 2013 from 127.0.0.1 [qfan@mycomputer ~]$ exit logout Connection to localhost closed.

请注意,“ssh localhost -i id_rsa”失败,ssh开始要求定期input密码。

我使用了-vvv,这里是日志的差异: 

 [qfan@mycomputer .ssh]$ ssh localhost -i id_rsa_good -vvv 2> log1_good.txt Enter passphrase for key 'id_rsa_good': [qfan@mycomputer .ssh]$ ssh localhost -i id_rsa -vvv 2> log2_bad.txt qfan@localhost's password: [qfan@mycomputer .ssh]$ diff log1_good.txt log2_bad.txt 7c7 < debug3: Not a RSA1 key file id_rsa_good. --- > debug3: Not a RSA1 key file id_rsa. 41c41 < debug1: identity file id_rsa_good type -1 --- > debug1: identity file id_rsa type 1 81,82c81,82 < debug2: dh_gen_key: priv key bits set: 126/256 < debug2: bits set: 533/1024 --- > debug2: dh_gen_key: priv key bits set: 127/256 > debug2: bits set: 503/1024 90c90 < debug2: bits set: 506/1024 --- > debug2: bits set: 539/1024 103c103 < debug2: key: id_rsa_good ((nil)) --- > debug2: key: id_rsa (0x7f953ea96f90) 136,138c136,145 < debug1: Trying private key: id_rsa_good < debug1: PEM_read_PrivateKey failed < debug1: read PEM private key done: type <unknown> --- > debug1: Offering public key: id_rsa > debug3: send_pubkey_test > debug2: we sent a publickey packet, wait for reply > debug3: Wrote 368 bytes for a total of 1477 > debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password > debug2: we did not send a packet, disable method > debug3: authmethod_lookup password > debug3: remaining preferred: ,password > debug3: authmethod_is_enabled password > debug1: Next authentication method: password [qfan@mycomputer .ssh]$

我也尝试从密钥文件中删除密码,但是如果名为id_rsa,它仍然不起作用。

那么,那里出了什么问题?

– – – -编辑 – – – – 

 [qfan@mycomputer .ssh]$ file id_rsa id_rsa: ASCII text [qfan@mycomputer .ssh]$ cat id_rsa |head -n2 -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED

好的…find原因。 同一个.ssh文件夹中的id_rsa.pub是属于不同标识文件的公钥。 当id_rsa.pub与id_rsa不匹配时,会自动失败。 删除或移动id_rsa.pub文件使id_rsa工作。