Digital Ocean Cloud 서버에서 SSH 키 인증을 설정하려고 합니다. 먼저 rsa_id.pub를 내 계정에 추가하고 이를 생성할 때 우분투 드롭릿에 자동으로 로드했습니다. rsa 공개 키에 액세스하는 중 오류가 발생한 것 같았지만 /etc/ssh의 모든 파일 권한을 777로 변경했습니다(나쁜 생각이라는 것을 알고 있습니다). 어떤 아이디어가 있나요?
-ssh 인증 시도 시 자세한 로그
Apr 2 13:42:38 CarreFamilyHomestay-Webserver sshd[976]: Server listening on 0.0.0.0 port 22.
Apr 2 13:42:38 CarreFamilyHomestay-Webserver sshd[976]: Server listening on :: port 22.
Apr 2 13:43:49 CarreFamilyHomestay-Webserver sshd[1193]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 13:44:54 CarreFamilyHomestay-Webserver sshd[1193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.80.65.235 user=root
Apr 2 13:44:56 CarreFamilyHomestay-Webserver sshd[1193]: Failed password for root from 192.80.65.235 port 33463 ssh2
Apr 2 13:44:56 CarreFamilyHomestay-Webserver sshd[1193]: Connection closed by 192.80.65.235 [preauth]
Apr 2 13:46:17 CarreFamilyHomestay-Webserver sshd[1196]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 13:58:54 CarreFamilyHomestay-Webserver sshd[951]: Server listening on 0.0.0.0 port 22.
Apr 2 13:58:54 CarreFamilyHomestay-Webserver sshd[951]: Server listening on :: port 22.
Apr 2 14:00:35 CarreFamilyHomestay-Webserver sshd[1118]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: pam_unix(sshd:account): expired password for user root (root enforced)
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: Accepted password for root from 192.80.65.235 port 33274 ssh2
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: pam_unix(sshd:session): session opened for user root by (uid=0)
Apr 2 14:03:34 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:03:34 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:03:37 CarreFamilyHomestay-Webserver login[1042]: FAILED LOGIN (1) on '/dev/tty1' FOR 'UNKNOWN', Authentication failure
Apr 2 14:04:00 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:03 CarreFamilyHomestay-Webserver login[1042]: FAILED LOGIN (2) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:04:22 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:04:22 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:04:37 CarreFamilyHomestay-Webserver login[1168]: pam_unix(login:account): expired password for user root (root enforced)
Apr 2 14:04:44 CarreFamilyHomestay-Webserver login[1168]: pam_unix(login:chauthtok): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:46 CarreFamilyHomestay-Webserver login[1168]: Authentication token manipulation error
Apr 2 14:04:53 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:57 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (1) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:05:04 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:05:04 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:05:07 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (2) on '/dev/tty1' FOR 'UNKNOWN', Authentication failure
Apr 2 14:05:17 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (3) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:05:33 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:account): expired password for user root (root enforced)
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:chauthtok): password changed for root
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:session): session opened for user root by LOGIN(uid=0)
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1225]: ROOT LOGIN on '/dev/tty1'
Apr 2 14:07:10 CarreFamilyHomestay-Webserver sshd[1240]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 14:07:17 CarreFamilyHomestay-Webserver sshd[1240]: Accepted password for root from 192.80.65.235 port 35403 ssh2
Apr 2 14:07:17 CarreFamilyHomestay-Webserver sshd[1240]: pam_unix(sshd:session): session opened for user root by (uid=0)
Apr 2 14:07:36 CarreFamilyHomestay-Webserver sudo: root : TTY=pts/1 ; PWD=/root/.ssh ; USER=root ; COMMAND=/usr/bin/vim authorized_keys
Apr 2 14:07:36 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session opened for user root by root(uid=0)
Apr 2 14:07:57 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session closed for user root
Apr 2 14:08:36 CarreFamilyHomestay-Webserver sudo: root : TTY=pts/1 ; PWD=/etc/ssh ; USER=root ; COMMAND=/usr/bin/apt-get install gedit
Apr 2 14:08:36 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session opened for user root by root(uid=0)
Apr 2 14:09:08 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session closed for user root
Apr 2 14:13:34 CarreFamilyHomestay-Webserver sshd[1316]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
/var/log/auth.log
Apr 2 13:42:38 CarreFamilyHomestay-Webserver sshd[976]: Server listening on 0.0.0.0 port 22.
Apr 2 13:42:38 CarreFamilyHomestay-Webserver sshd[976]: Server listening on :: port 22.
Apr 2 13:43:49 CarreFamilyHomestay-Webserver sshd[1193]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 13:44:54 CarreFamilyHomestay-Webserver sshd[1193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.80.65.235 user=root
Apr 2 13:44:56 CarreFamilyHomestay-Webserver sshd[1193]: Failed password for root from 192.80.65.235 port 33463 ssh2
Apr 2 13:44:56 CarreFamilyHomestay-Webserver sshd[1193]: Connection closed by 192.80.65.235 [preauth]
Apr 2 13:46:17 CarreFamilyHomestay-Webserver sshd[1196]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 13:58:54 CarreFamilyHomestay-Webserver sshd[951]: Server listening on 0.0.0.0 port 22.
Apr 2 13:58:54 CarreFamilyHomestay-Webserver sshd[951]: Server listening on :: port 22.
Apr 2 14:00:35 CarreFamilyHomestay-Webserver sshd[1118]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: pam_unix(sshd:account): expired password for user root (root enforced)
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: Accepted password for root from 192.80.65.235 port 33274 ssh2
Apr 2 14:00:38 CarreFamilyHomestay-Webserver sshd[1118]: pam_unix(sshd:session): session opened for user root by (uid=0)
Apr 2 14:03:34 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:03:34 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:03:37 CarreFamilyHomestay-Webserver login[1042]: FAILED LOGIN (1) on '/dev/tty1' FOR 'UNKNOWN', Authentication failure
Apr 2 14:04:00 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:03 CarreFamilyHomestay-Webserver login[1042]: FAILED LOGIN (2) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:04:22 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:04:22 CarreFamilyHomestay-Webserver login[1042]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:04:37 CarreFamilyHomestay-Webserver login[1168]: pam_unix(login:account): expired password for user root (root enforced)
Apr 2 14:04:44 CarreFamilyHomestay-Webserver login[1168]: pam_unix(login:chauthtok): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:46 CarreFamilyHomestay-Webserver login[1168]: Authentication token manipulation error
Apr 2 14:04:53 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost= user=root
Apr 2 14:04:57 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (1) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:05:04 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): check pass; user unknown
Apr 2 14:05:04 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:auth): authentication failure; logname=LOGIN uid=0 euid=0 tty=/dev/tty1 ruser= rhost=
Apr 2 14:05:07 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (2) on '/dev/tty1' FOR 'UNKNOWN', Authentication failure
Apr 2 14:05:17 CarreFamilyHomestay-Webserver login[1173]: FAILED LOGIN (3) on '/dev/tty1' FOR 'root', Authentication failure
Apr 2 14:05:33 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:account): expired password for user root (root enforced)
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:chauthtok): password changed for root
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1173]: pam_unix(login:session): session opened for user root by LOGIN(uid=0)
Apr 2 14:05:59 CarreFamilyHomestay-Webserver login[1225]: ROOT LOGIN on '/dev/tty1'
Apr 2 14:07:10 CarreFamilyHomestay-Webserver sshd[1240]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
Apr 2 14:07:17 CarreFamilyHomestay-Webserver sshd[1240]: Accepted password for root from 192.80.65.235 port 35403 ssh2
Apr 2 14:07:17 CarreFamilyHomestay-Webserver sshd[1240]: pam_unix(sshd:session): session opened for user root by (uid=0)
Apr 2 14:07:36 CarreFamilyHomestay-Webserver sudo: root : TTY=pts/1 ; PWD=/root/.ssh ; USER=root ; COMMAND=/usr/bin/vim authorized_keys
Apr 2 14:07:36 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session opened for user root by root(uid=0)
Apr 2 14:07:57 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session closed for user root
Apr 2 14:08:36 CarreFamilyHomestay-Webserver sudo: root : TTY=pts/1 ; PWD=/etc/ssh ; USER=root ; COMMAND=/usr/bin/apt-get install gedit
Apr 2 14:08:36 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session opened for user root by root(uid=0)
Apr 2 14:09:08 CarreFamilyHomestay-Webserver sudo: pam_unix(sudo:session): session closed for user root
Apr 2 14:13:34 CarreFamilyHomestay-Webserver sshd[1316]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key
답변1
다시. Authorized_keys 파일을 삭제하세요.
- ssh-keygen(모든 기본값을 수락하고 비밀번호를 사용하지 않음)
- vi .ssh/authorized_keys
- 연결하려는 서버에서 id_rsa.pub의 내용을 붙여넣습니다.
또한 클라우드 서버에서 권한을 변경할 때는 매우 주의하세요. 내 대답은 Linux에 대한 일반적인 것입니다. 다른 프로세스가 있는 경우 SSH 키에 대한 Digital Ocean 세부 정보를 확인하세요. 예를 들어 AWS에는 자체 키 관리 시스템이 있습니다.