Kako omogućiti SSH način otklanjanja pogrešaka za rješavanje problema sa SSH vezama

U ovom ćemo vam članku pokazati kako uključiti način otklanjanja pogrešaka dok izvodite SSH u Linuxu. Ovo će vam omogućiti da vidite što se zapravo odvija kada izvršite ssh naredbu za povezivanje s udaljenim Linux poslužiteljem koristeći verbose način ili način otklanjanja pogrešaka.

Prekidač -v ssh klijenta omogućuje vam pokretanje ssh-a u verbose modu, koji ispisuje informacije o otklanjanju pogrešaka o napretku SSH veze, što je stvarno korisno za otklanjanje pogrešaka veza, autentifikaciju i sve probleme s konfiguracijom.

Postoje različite razine opširnosti; korištenje višestrukih oznaka -v povećava opširnost (maksimalna razina opširnosti je 3).

  • ssh -v – obavijestit će vas što se događa uglavnom na vašoj strani.
  • ssh -vv – obavijestit će vas o niskoj razini na oba kraja.
  • ssh -vvv – obavijestit će vas o svemu s obje strane.

Sljedeća naredba će pokrenuti SSH u prvoj razini opširnosti, što nam daje puno informacija za otklanjanje pogrešaka kao što je prikazano.

aaronkilik@tecmint ~ $ ssh -v [email 

Uzorak izlaza
OpenSSH_7.2p2 Ubuntu-4ubuntu2.2, OpenSSL 1.0.2g-fips  1 Mar 2016
debug1: Reading configuration data /home/aaronkilik/.ssh/config
debug1: /home/aaronkilik/.ssh/config line 18: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to 192.168.56.10 [192.168.56.10] port 22.
debug1: Connection established.
debug1: identity file /home/aaronkilik/.ssh/id_rsa type 1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/aaronkilik/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.2
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.4
debug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to 192.168.56.10:22 as 'tecmint'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: [email 
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: [email  MAC:
compression: [email 
debug1: kex: client->server cipher: [email  MAC:
compression: [email 
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 
SHA256:1778erqyug4tHJa7D6y/Ep4UWsUtNEOBSMaj32k9oO8
debug1: Host '192.168.56.10' is known and matches the ECDSA host key.
debug1: Found key in /home/aaronkilik/.ssh/known_hosts:8
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: 
publickey,gssapi-keyex,gssapi-with-mic,password
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/aaronkilik/.ssh/id_rsa
debug1: Server accepts key: pkalg rsa-sha2-512 blen 279
debug1: Enabling compression at level 6.
debug1: Authentication succeeded (publickey).
Authenticated to 192.168.56.10 ([192.168.56.10]:22).
debug1: channel 0: new [client-session]
debug1: Requesting [email 
debug1: Entering interactive session.
debug1: pledge: network
debug1: client_input_global_request: rtype [email  
want_reply 0
debug1: Sending environment.
debug1: Sending env LC_PAPER = lg_UG.UTF-8
debug1: Sending env LC_ADDRESS = lg_UG.UTF-8
debug1: Sending env LC_MONETARY = lg_UG.UTF-8
debug1: Sending env LC_NUMERIC = lg_UG.UTF-8
debug1: Sending env LC_TELEPHONE = lg_UG.UTF-8
debug1: Sending env LC_IDENTIFICATION = lg_UG.UTF-8
debug1: Sending env LANG = en_US.UTF-8
debug1: Sending env LC_MEASUREMENT = lg_UG.UTF-8
debug1: Sending env LC_NAME = lg_UG.UTF-8
Last login: Sat Jan  6 16:20:11 2018 from 192.168.56.1

Kada se pokušate odjaviti ili izaći iz sesije, vidjet ćete i poruke za otklanjanje pogrešaka kao što je prikazano.

[tecmint@tecmint ~]$ exit

logout
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug1: client_input_channel_req: channel 0 rtype [email  reply 0
debug1: channel 0: free: client-session, nchannels 1
Connection to 192.168.56.10 closed.
Transferred: sent 3392, received 3120 bytes, in 118.1 seconds
Bytes per second: sent 28.7, received 26.4
debug1: Exit status 0
debug1: compress outgoing: raw data 1159, compressed 573, factor 0.49
debug1: compress incoming: raw data 573, compressed 1159, factor 2.02

Zatim možete omogućiti dodatnu (razina 2 i 3) opširnost za još više poruka o ispravljanju pogrešaka kao što je prikazano.

ssh -vv [email 
ssh -vvv [email 

To je to! Za više informacija o upotrebi SSH-a pročitajte sljedeće povezane članke.

  • Kako osigurati i očvrsnuti OpenSSH poslužitelj
  • 5 najboljih praksi za sprječavanje SSH brute-force napada napada u Linuxu
  • Kako pronaći sve neuspjele pokušaje SSH prijave u Linuxu
  • Kako onemogućiti SSH root prijavu u Linuxu
  • Kako postaviti SSH prijavu bez lozinke u Linuxu
  • Kako prekinuti neaktivne ili neaktivne SSH veze u Linuxu

Nadamo se da će vam ovaj članak biti od pomoći. Možete postaviti bilo kakva pitanja ili podijeliti svoja razmišljanja putem obrasca za komentare u nastavku.