ssh – 煎炸熊の記事本

Resolving SSH Error “no hostkey alg” from Old Linux OS to RHEL/AlmaLinux/RockyLinux 9

1 月 082024

Source: Unable to add old HostKeyAlgorithms Ciphers KexAlgorithms to sshd_config no hostkey alg error

Source: SSH connection fails with messages “no hostkey alg”

When attempting to establish an SSH connection, you might encounter an error message stating “no hostkey alg”. This is because RHEL 9 only supports SHA2 hashes for RSA host keys, hence they are incompatible with the old linux’s SHA1-based RSA host keys..

However, the old linux can connect to RHEL 9 using ECDSA keys:

ssh -o Hostkeyalgorithms=ecdsa-sha2-nistp256 ServerHostname/ServerIP

You can add the following in /etc/ssh/ssh_config or ~/.ssh/ssh_config:

Host ServerHostname/ServerIP
    Hostkeyalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521

Resolving SSH Connectivity Issues from New Linux OS to Old Linux OS

Linux No Responses »

1 月 012024

Are you encountering the "Unable to negotiate with ip: no matching host key type found. Their offer: ssh-rsa,ssh-dss" error when trying to SSH from new Linux OS to old Linux OS? This issue can be frustrating, but it's relatively straightforward to fix.

利用 SSH Tunnel 做跳板（aka. 翻牆）

Linux, Windows No Responses »

7 月 292020

Source: 利用 SSH Tunnel 做跳板（aka. 翻牆）

SSH參數說明：

-N : 不執行任何指令
-f : 在背景執行
-L : 將 local port 轉向
-R : 將 remote port 轉向
-D : socks proxy

SSH Email Alerts

Linux No Responses »

8 月 262017

Source: SSH Email Alerts

This guide shows a simple way to know when someone logged in as root or normal user using Secure Shell (SSH). It will send an email alert notification to the specified email address along with the IP address of last login.

ssh/sftp no matching cipher found

Linux 1 Response »

8 月 172017

Source: ssh/sftp no matching cipher found

ssh/sftp 遇到 no matching cipher found 原因是在 OpenSSH 6.7 之後,
預設移除了不安全的 Cipher, *cbc 及 arcfour*
若使用較舊的 Client, 跟 Server 沒有 matching cipher 就會無法連線

解法: 更新 Client或啟用 Server 端不安全的 Cipher,

ssh tar 命令把遠端檔拉回來或推過去

Linux No Responses »

8 月 122016

Source: ssh tar 命令把遠端檔拉回來或推過去

轉貼 http://zoomq.qiniudn.com/ZQScrapBook/ZqFLOSS/data/20101215175709/

在Linux下，通常可透過scp/tar+ssh/rsync處理異機備份的動作。
本文對tar+ssh實作說明簡明，故留存之.

Using tar and ssh to efficiently copy files preserving permissions

Linux No Responses »

8 月 122016

Source: Using tar and ssh to efficiently copy files preserving permissions

Have you had situations where disk-space is sparse, so making full tars (although compressed) is impossible? Here is an ssh trick that could help you copy over files without using too much diskspace.

SSH 連接時報錯警告消息 Possible Break-in Attempt

Linux No Responses »

12 月 232012

原文(source): SSH連接時報錯警告消息:Reverse Mapping Checking - Possible Break-in Attempt Error with SSH | 點滴之間聚沙成金

這是告訴我們，儘管我們在連接my.example.com ，但是實際上該server的IP 地址對應到192-168-1-243.foo.bar.net 。但這個發生的時候，就是因為server 上的reverse DNS 沒有設置好。

在VPS上建立最低權限的SSH帳號用於代理服務

Linux No Responses »

11 月 142012

原文(source): 在VPS上建立最低權限的SSH帳號用於代理服務 | CoCo Bauer

最近基於SSH tunnel的代理方式越來越流行了，本文將教會大家如何在VPS上開設公用SSH帳號用於突破封鎖翻越高牆。方法非常簡單，只要兩步就可以實現：

Windows File Sharing (SMB/CIFS/Samba) over SSH

Linux, Windows No Responses »

8 月 062012

原文(source): Learnosity Tech Blog : Windows File Sharing (SMB/CIFS/Samba) over SSH

While working with a client recently setting up a Netgear VPN so he could securely access his internal file server. The VPN setup was straightforward but every time the VPN client connected to the VPN server the VPN server/firewall would crash - leaving no connectivity.

Older Entries

2024 年 4 月
日	一	二	三	四	五	六
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30