Amazon EC2 RSA密钥已停止身份验证 - 权限被拒绝(publickey)

时间:2010-04-16 04:24:33

标签: ubuntu ssh amazon-ec2 rsa

对我们的Ubuntu EC2实例进行身份验证工作正常,直到不久前。突然间,钥匙被拒绝了。当我们使用密钥对创建新实例时,我们能够完美地连接到实例,因此它似乎是现有实例的问题。港口22开放。

有关从配置角度看什么的任何建议,以便我们可以解决这个问题?关于我们如何进入禁区的任何想法?

这是SSH调试输出。有什么明显不对的吗?

非常感谢!

$ ssh -v -i ~/zzz.pem ubuntu@###.###.###.###
OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to ###.###.###.### [###.###.###.###] port 22.
debug1: Connection established.
debug1: identity file zzz.pem type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1p1 Debian-6ubuntu2
debug1: match: OpenSSH_5.1p1 Debian-6ubuntu2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '###.###.###.###' is known and matches the RSA host key.
debug1: Found key in /zzz/.ssh/known_hosts:18
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /zzz/.ssh/id_rsa
debug1: Authentications that can continue: publickey
debug1: Offering public key: zzz.txt
debug1: Authentications that can continue: publickey
debug1: Trying private key: zzz.pem
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: publickey
debug1: No more authentication methods to try.
Permission denied (publickey).

1 个答案:

答案 0 :(得分:1)

我们弄清楚这里出了什么问题。盒子上的用户覆盖了主〜/ .ssh / authorized_keys - 他能够登录并检查该文件并重新添加master .pem键。