[英]using Jenkins I can't connect to a Debian Jessie box via ssh
Using Jenkin CI's 'SSH plugin' I can not make a connection to a Debian Jessie box using password auth. 使用Jenkin CI的“ SSH插件”,我无法使用密码身份验证连接到Debian Jessie盒。 I am able to ssh to the box directly with my local terminal no problem. 我可以直接用本地终端ssh到盒子,没问题。 I don't have the same issue with Debian Wheezy or Ubuntu LTS. Debian Wheezy或Ubuntu LTS没有相同的问题。 Any ideas? 有任何想法吗? Not an iptables issue, the firewall is wide open. 这不是iptables问题,防火墙是完全开放的。
openssh-server 6.7 changes are at fault: openssh-server 6.7更改存在错误:
http://www.openssh.com/txt/release-6.7 http://www.openssh.com/txt/release-6.7
Changes since OpenSSH 6.6
=========================
Potentially-incompatible changes
* sshd(8): The default set of ciphers and MACs has been altered to
remove unsafe algorithms. In particular, CBC ciphers and arcfour*
are disabled by default.
The full set of algorithms remains available if configured
explicitly via the Ciphers and MACs sshd_config options.
I think Jenkins needs to update the ssh clients to a supported and secure cipher. 我认为Jenkins需要将ssh客户端更新为受支持的安全密码。 I added the below to my sshd_config and it did the trick: 我将以下内容添加到我的sshd_config中,它成功了:
KexAlgorithms curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
Anyone happen to know which of these ciphers is the one Jenkins uses? 有人碰巧知道詹金斯使用的是哪种密码?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.