现在新版本交换机开始ssh后,客户的旧版本ssh工具登录不上去,
mobaxter上提示“Couldn't agree a host key algorithm(available: rsa-sha2-512,rsa-sha2-256)”
我使用我的0.79版本的putty就可以登录。
服务器上把弱密钥算法打开
ssh server publickey dsa ecc rsa rsa_sha2_256 rsa_sha2_512
部分交换机可能默认无法打开需要加载弱密钥插件
install feature-software WEAKEA
交换机配置示例可参考如下配置,配置弱加密算法:
先执行 install feature-software WEAKEA
ssh server cipher aes256_gcm aes128_gcm aes256_ctr aes192_ctr aes128_ctr aes256_cbc aes192_cbc aes128_cbc 3des_cbc des_cbc sm4_cbc sm4_gcm
ssh server hmac sha2_512 sha2_256_96 sha2_256 sha1 sha1_96 md5 md5_96 sm3
ssh server key-exchange dh_group_exchange_sha256 dh_group_exchange_sha1 dh_group14_sha1 dh_group1_sha1 sm2_kep dh_group16_sha512 curve25519_sha256
ssh server publickey dsa ecc rsa sm2 rsa_sha2_256 rsa_sha2_512
ssh server cipher aes256_ctr aes128_ctr
ssh server hmac sha2_256
ssh server key-exchange dh_group16_sha512 dh_group15_sha512 dh_group14_sha256 dh_group_exchange_sha256
ssh client cipher aes256_ctr aes128_ctr
ssh client hmac sha2_256
ssh client key-exchange dh_group16_sha512 dh_group15_sha512 dh_group14_sha256 dh_group_exchange_sha256
ssh server dh-exchange min-len 2048
推荐本站淘宝优惠价购买喜欢的宝贝:
本文链接:https://hqyman.cn/post/8767.html 非本站原创文章欢迎转载,原创文章需保留本站地址!
微信支付宝扫一扫,打赏作者吧~休息一下~~
官码2024000195号
萌ICP备20248119号
