Ubuntu-配置SSH

版权声明：本文为博主原创文章，未经博主允许不得转载。转载请在文章结尾显眼处附带博主文章地址。 https://blog.csdn.net/qq_27559331/article/details/89887098

• 设置Root登录密码

sudo passwd root

• 安装ssh服务端

sudo apt install openssh-server

• [可选] 允许Root账户SSH登录

 sudo vi /etc/ssh/sshd_config

• PermitRootLogin prohibit-password 改为 PermitRootLogin yes
• ssh服务开机自启用

sudo update-rc.d ssh defaults

• 重启SSH服务

sudo service sshd restart

• 检查SSH状态

sudo service sshd status

• 检查SSH程序进程

sudo ps -e |grep ssh

遇到问题

• E: Unable to locate package openssh-server

解决：

sudo apt-get upgrade
sudo apt install openssh-server

原因:

软件源出问题，导致无法下载。

• WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!

λ ssh [email protected]
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:ZlPVFUB15mTUoTGNJB/vTMiMMusTCapuBt76OkPlFLI.
Please contact your system administrator.
Add correct host key in /c/Users/jyx/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in `/c/Users/jyx/.ssh/known_hosts`:5
ECDSA host key for 192.168.182.138 has changed and you have requested strict checking.
Host key verification failed.

解决:

vi /c/Users/jyx/.ssh/known_hosts

删除 192.168.182.138的配置

192.168.182.130 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBHk4Um5Zjma9dqg0XACqdcv5+ur/BbvBPzwcRc7ltFdwr1uKSPZIxa/4rcVBscBDHWZA6H7L1GjpqGs0vhIzzU=
192.168.182.137 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBB3bWgSrutyMmy72hw325iRK76iLZk0i0VgygIzPDr/7x+XEFL2GqO95erel8WpzTmBpoAF4xeiIV4oRu4fOEcs=
39.108.225.232 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBbuEHvpYxx7w4KTJOrzGNx6ZdXgZTTNgN+Q7NLYHYwrCq/QTdPyEdXWsoiqNhZgXmmulMtagPZcv/x2FOaFT/A=
clovernet.top ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBbuEHvpYxx7w4KTJOrzGNx6ZdXgZTTNgN+Q7NLYHYwrCq/QTdPyEdXWsoiqNhZgXmmulMtagPZcv/x2FOaFT/A=

192.168.182.138 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBB3bWgSrutyMmy72hw325iRK76iLZk0i0VgygIzPDr/7x+XEFL2GqO95erel8WpzTmBpoAF4xeiIV4oRu4fOEcs=

192.168.182.139 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBB3bWgSrutyMmy72hw325iRK76iLZk0i0VgygIzPDr/7x+XEFL2GqO95erel8WpzTmBpoAF4xeiIV4oRu4fOEcs=
192.168.182.140 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBACxfiJ2//faFm/Wtisr7qUrbtuquhGiD0m448XwqnsyeNljYGumdW3g00zJfvxr/keg5KUWGD/qV71laCH8/4w=

原因：

远程连接时，提示“Are you sure you want to continue connecting (yes/no)?”时，会将生成的秘钥写入了客户端系统（比如 /c/Users/jyx/.ssh/known_hosts），之后远程就不需要再次提示了。当我重装系统后，旧配置并未删除，SSH使用旧秘钥远程时被拒绝。