{"id":13358,"date":"2026-03-26T10:18:28","date_gmt":"2026-03-26T02:18:28","guid":{"rendered":"https:\/\/www.gbase8.cn\/?p=13358"},"modified":"2026-03-26T10:18:54","modified_gmt":"2026-03-26T02:18:54","slug":"ssh-%e8%bf%9e%e6%8e%a5%e6%97%b6%e7%9a%84%e5%ba%95%e5%b1%82%e9%80%9a%e4%bf%a1%e8%bf%87%e7%a8%8b-vvv%e5%8f%82%e6%95%b0%e8%be%93%e5%87%ba%e4%bf%a1%e6%81%af%e8%af%a6%e8%a7%a3","status":"publish","type":"post","link":"https:\/\/www.gbase8.cn\/en\/13358","title":{"rendered":"Detailed Explanation of Underlying Communication Process and -vvv Parameter Output During SSH Connection"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Directory Navigation<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2a942f76a3d\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewbox=\"0 0 24 24\" version=\"1.2\" baseprofile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2a942f76a3d\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E4%B8%80%E3%80%81%E5%9F%BA%E7%A1%80%E7%8E%AF%E5%A2%83%E4%B8%8E%E8%BF%9E%E6%8E%A5%E5%88%9D%E5%A7%8B%E5%8C%96\" >\u4e00\u3001\u57fa\u7840\u73af\u5883\u4e0e\u8fde\u63a5\u521d\u59cb\u5316<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E4%BA%8C%E3%80%81%E8%BA%AB%E4%BB%BD%E6%96%87%E4%BB%B6%E6%A3%80%E6%B5%8B\" >\u4e8c\u3001\u8eab\u4efd\u6587\u4ef6\u68c0\u6d4b<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E4%B8%89%E3%80%81%E5%8D%8F%E8%AE%AE%E7%89%88%E6%9C%AC%E5%8D%8F%E5%95%86%EF%BC%88%E6%A0%B8%E5%BF%83%E5%89%8D%E7%BD%AE%EF%BC%89\" >\u4e09\u3001\u534f\u8bae\u7248\u672c\u534f\u5546\uff08\u6838\u5fc3\u524d\u7f6e\uff09<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E5%9B%9B%E3%80%81%E5%8A%A0%E5%AF%86%E7%AE%97%E6%B3%95%E5%8D%8F%E5%95%86%EF%BC%88%E6%A0%B8%E5%BF%83%E7%8E%AF%E8%8A%82%EF%BC%89\" >\u56db\u3001\u52a0\u5bc6\u7b97\u6cd5\u534f\u5546\uff08\u6838\u5fc3\u73af\u8282\uff09<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#1_%E5%AE%A2%E6%88%B7%E7%AB%AF%E5%8F%91%E9%80%81%E8%87%AA%E5%B7%B1%E7%9A%84%E7%AE%97%E6%B3%95%E5%88%97%E8%A1%A8%EF%BC%88KEXINIT%EF%BC%89\" >1. \u5ba2\u6237\u7aef\u53d1\u9001\u81ea\u5df1\u7684\u7b97\u6cd5\u5217\u8868\uff08KEXINIT\uff09<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#2_%E6%9C%8D%E5%8A%A1%E5%99%A8%E8%BF%94%E5%9B%9E%E8%87%AA%E5%B7%B1%E7%9A%84%E7%AE%97%E6%B3%95%E5%88%97%E8%A1%A8\" >2. \u670d\u52a1\u5668\u8fd4\u56de\u81ea\u5df1\u7684\u7b97\u6cd5\u5217\u8868<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#3_%E6%9C%8D%E5%8A%A1%E5%99%A8%E6%9C%80%E7%BB%88%E9%80%89%E5%AE%9A%E7%AE%97%E6%B3%95%EF%BC%88%E6%8B%8D%E6%9D%BF%EF%BC%89\" >3. \u670d\u52a1\u5668\u6700\u7ec8\u9009\u5b9a\u7b97\u6cd5\uff08\u62cd\u677f\uff09<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E4%BA%94%E3%80%81%E6%9C%8D%E5%8A%A1%E5%99%A8%E8%BA%AB%E4%BB%BD%E9%AA%8C%E8%AF%81%EF%BC%88%E7%A1%AE%E8%AE%A4%E4%B8%8D%E6%98%AF%E9%92%93%E9%B1%BC%E6%9C%8D%E5%8A%A1%E5%99%A8%EF%BC%89\" >\u4e94\u3001\u670d\u52a1\u5668\u8eab\u4efd\u9a8c\u8bc1\uff08\u786e\u8ba4\u4e0d\u662f\u9493\u9c7c\u670d\u52a1\u5668\uff09<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E5%85%AD%E3%80%81%E4%BC%9A%E8%AF%9D%E5%AF%86%E9%92%A5%E7%94%9F%E6%88%90%EF%BC%88%E5%8A%A0%E5%AF%86%E9%80%9A%E4%BF%A1%E5%87%86%E5%A4%87%EF%BC%89\" >\u516d\u3001\u4f1a\u8bdd\u5bc6\u94a5\u751f\u6210\uff08\u52a0\u5bc6\u901a\u4fe1\u51c6\u5907\uff09<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E4%B8%83%E3%80%81%E8%BA%AB%E4%BB%BD%E8%AE%A4%E8%AF%81%E7%8E%AF%E8%8A%82%EF%BC%88%E7%99%BB%E5%BD%95%E9%AA%8C%E8%AF%81%EF%BC%89\" >\u4e03\u3001\u8eab\u4efd\u8ba4\u8bc1\u73af\u8282\uff08\u767b\u5f55\u9a8c\u8bc1\uff09<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/www.gbase8.cn\/en\/13358\/#%E6%80%BB%E7%BB%93%EF%BC%88%E6%A0%B8%E5%BF%83%E5%85%B3%E9%94%AE%E7%82%B9%EF%BC%89\" >\u603b\u7ed3\uff08\u6838\u5fc3\u5173\u952e\u70b9\uff09<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E4%B8%80%E3%80%81%E5%9F%BA%E7%A1%80%E7%8E%AF%E5%A2%83%E4%B8%8E%E8%BF%9E%E6%8E%A5%E5%88%9D%E5%A7%8B%E5%8C%96\"><\/span>\u4e00\u3001\u57fa\u7840\u73af\u5883\u4e0e\u8fde\u63a5\u521d\u59cb\u5316<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>&#91;root@localhost ~]# ssh -vvv 10.0.2.201\nOpenSSH_7.4p1, OpenSSL 1.0.2k-fips  26 Jan 2017  # \u5ba2\u6237\u7aefSSH\/OpenSSL\u7248\u672c\ndebug1: Reading configuration data \/etc\/ssh\/ssh_config  # \u8bfb\u53d6\u5ba2\u6237\u7aef\u5168\u5c40\u914d\u7f6e\u6587\u4ef6\ndebug1: \/etc\/ssh\/ssh_config line 58: Applying options for *  # \u5e94\u7528\u5bf9\u6240\u6709\u4e3b\u673a\u7684\u9ed8\u8ba4\u914d\u7f6e\ndebug2: resolving \"10.0.2.201\" port 22  # \u89e3\u6790\u76ee\u6807IP+\u9ed8\u8ba4SSH\u7aef\u53e322\ndebug2: ssh_connect_direct: needpriv 0  # \u65e0\u9700\u7279\u6b8a\u6743\u9650\u5373\u53ef\u76f4\u8fde\ndebug1: Connecting to 10.0.2.201 &#91;10.0.2.201] port 22.  # \u5f00\u59cb\u5efa\u7acbTCP\u8fde\u63a5\ndebug1: Connection established.  # TCP\u4e09\u6b21\u63e1\u624b\u5b8c\u6210\uff0c\u5e95\u5c42\u8fde\u63a5\u901a\u4e86<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>\u8fd9\u4e00\u6b65\u662f\u300c\u5148\u901a\u7f51\u7edc\u300d\u2014\u2014 \u5ba2\u6237\u7aef\u5148\u786e\u8ba4\u81ea\u5df1\u7684\u7248\u672c\u3001\u52a0\u8f7d\u914d\u7f6e\uff0c\u7136\u540e\u548c\u670d\u52a1\u5668\u5efa\u7acb\u6700\u57fa\u7840\u7684 TCP \u8fde\u63a5\uff08\u5c31\u50cf\u5148\u6253\u901a\u7535\u8bdd\u7ebf\u8def\uff09\u3002<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E4%BA%8C%E3%80%81%E8%BA%AB%E4%BB%BD%E6%96%87%E4%BB%B6%E6%A3%80%E6%B5%8B\"><\/span>\u4e8c\u3001\u8eab\u4efd\u6587\u4ef6\u68c0\u6d4b<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: permanently_set_uid: 0\/0  # \u4ee5root\u7528\u6237\uff08UID=0\uff09\u8fd0\u884c\ndebug1: key_load_public: No such file or directory\ndebug1: identity file \/root\/.ssh\/id_rsa type -1\n...\uff08\u91cd\u590did_dsa\/ecdsa\/ed25519\uff09...<\/code><\/pre>\n\n\n\n<p>SSH \u9ed8\u8ba4\u4f1a\u4f18\u5148\u5c1d\u8bd5\u300c\u516c\u94a5\u8ba4\u8bc1\u300d\uff0c\u6240\u4ee5\u5148\u53bb <code>\/root\/.ssh\/<\/code> \u76ee\u5f55\u627e\u5e38\u7528\u7684\u79c1\u94a5\u6587\u4ef6\uff08id_rsa\/id_dsa \u7b49\uff09\uff0c\u8fd9\u91cc\u663e\u793a\u300c\u627e\u4e0d\u5230\u8fd9\u4e9b\u6587\u4ef6\u300d\uff0c\u5c5e\u4e8e\u6b63\u5e38\u73b0\u8c61\uff08\u56e0\u4e3a\u4f60\u8fd8\u6ca1\u751f\u6210 \/ \u5b58\u653e\u5bc6\u94a5\uff09\uff0c\u540e\u7eed\u4f1a fallback \u5230\u5bc6\u7801\u8ba4\u8bc1\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E4%B8%89%E3%80%81%E5%8D%8F%E8%AE%AE%E7%89%88%E6%9C%AC%E5%8D%8F%E5%95%86%EF%BC%88%E6%A0%B8%E5%BF%83%E5%89%8D%E7%BD%AE%EF%BC%89\"><\/span>\u4e09\u3001\u534f\u8bae\u7248\u672c\u534f\u5546\uff08\u6838\u5fc3\u524d\u7f6e\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: Enabling compatibility mode for protocol 2.0  # \u542f\u7528SSH2.0\u517c\u5bb9\u6a21\u5f0f\uff08\u73b0\u5728\u51e0\u4e4e\u90fd\u662fSSH2\uff09\ndebug1: Local version string SSH-2.0-OpenSSH_7.4  # \u5ba2\u6237\u7aef\u544a\u8bc9\u670d\u52a1\u5668\uff1a\u6211\u7528SSH2.0\uff0c\u7248\u672c\u662fOpenSSH7.4\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_7.4  # \u670d\u52a1\u5668\u56de\u5e94\uff1a\u6211\u4e5f\u662fSSH2.0+OpenSSH7.4\ndebug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000  # \u7248\u672c\u5339\u914d\uff0c\u517c\u5bb9\u6027\u6ca1\u95ee\u9898<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>\u53cc\u65b9\u5148\u786e\u8ba4\u300c\u901a\u4fe1\u8bed\u8a00\u7248\u672c\u300d\u4e00\u81f4\uff0c\u907f\u514d\u56e0\u7248\u672c\u4e0d\u517c\u5bb9\u65e0\u6cd5\u5bf9\u8bdd\u3002<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E5%9B%9B%E3%80%81%E5%8A%A0%E5%AF%86%E7%AE%97%E6%B3%95%E5%8D%8F%E5%95%86%EF%BC%88%E6%A0%B8%E5%BF%83%E7%8E%AF%E8%8A%82%EF%BC%89\"><\/span>\u56db\u3001\u52a0\u5bc6\u7b97\u6cd5\u534f\u5546\uff08\u6838\u5fc3\u73af\u8282\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u8fd9\u90e8\u5206\u662f<strong>\u5173\u952e<\/strong>\uff0c\u5ba2\u6237\u7aef\u7ed9\u5217\u8868\u3001\u670d\u52a1\u5668\u9009\u6700\u7ec8\u503c\uff1a<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"1_%E5%AE%A2%E6%88%B7%E7%AB%AF%E5%8F%91%E9%80%81%E8%87%AA%E5%B7%B1%E7%9A%84%E7%AE%97%E6%B3%95%E5%88%97%E8%A1%A8%EF%BC%88KEXINIT%EF%BC%89\"><\/span>1. \u5ba2\u6237\u7aef\u53d1\u9001\u81ea\u5df1\u7684\u7b97\u6cd5\u5217\u8868\uff08KEXINIT\uff09<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: SSH2_MSG_KEXINIT sent  # \u5ba2\u6237\u7aef\u628a\u81ea\u5df1\u652f\u6301\u7684\u7b97\u6cd5\u5217\u8868\u53d1\u7ed9\u670d\u52a1\u5668\ndebug2: local client KEXINIT proposal  # \u5ba2\u6237\u7aef\u7684\u7b97\u6cd5\u63d0\u6848\uff08\u91cd\u70b9\u770b\u4e0b\u9762\u7684ciphers\uff09\n# \u5bc6\u94a5\u4ea4\u6362\uff08KEX\uff09\u7b97\u6cd5\u5217\u8868\uff08\u7528\u4e8e\u534f\u5546\u4f1a\u8bdd\u5bc6\u94a5\uff09\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,...\n# \u4e3b\u673a\u5bc6\u94a5\u7b97\u6cd5\uff08\u7528\u4e8e\u9a8c\u8bc1\u670d\u52a1\u5668\u8eab\u4efd\uff09\ndebug2: host key algorithms: ecdsa-sha2-nistp256-cert-v01@openssh.com,...\n# \u6838\u5fc3\uff1a\u5ba2\u6237\u7aef\u652f\u6301\u7684\u52a0\u5bc6\u7b97\u6cd5\uff08ctos=\u670d\u52a1\u5668\u2192\u5ba2\u6237\u7aef\uff0cstoc=\u5ba2\u6237\u7aef\u2192\u670d\u52a1\u5668\uff09\ndebug2: ciphers ctos: <strong>chacha20-poly1305@openssh.com<\/strong>,aes128-ctr,aes192-ctr,...\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,...\n# MAC\u7b97\u6cd5\uff08\u6d88\u606f\u8ba4\u8bc1\u7801\uff0c\u7528\u4e8e\u6821\u9a8c\u6570\u636e\u5b8c\u6574\u6027\uff09\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,...\n# \u538b\u7f29\u7b97\u6cd5\ndebug2: compression ctos: none,zlib@openssh.com,zlib<\/code><\/pre>\n\n\n\n<p>\u5ba2\u6237\u7aef\u628a <code>chacha20-poly1305@openssh.com<\/code> \u653e\u5728\u52a0\u5bc6\u7b97\u6cd5\u5217\u8868\u7684<strong>\u7b2c\u4e00\u4f4d<\/strong>\uff08\u4f18\u5148\u7ea7\u6700\u9ad8\uff09\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"2_%E6%9C%8D%E5%8A%A1%E5%99%A8%E8%BF%94%E5%9B%9E%E8%87%AA%E5%B7%B1%E7%9A%84%E7%AE%97%E6%B3%95%E5%88%97%E8%A1%A8\"><\/span>2. \u670d\u52a1\u5668\u8fd4\u56de\u81ea\u5df1\u7684\u7b97\u6cd5\u5217\u8868<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: SSH2_MSG_KEXINIT received  # \u5ba2\u6237\u7aef\u6536\u5230\u670d\u52a1\u5668\u7684\u7b97\u6cd5\u5217\u8868\ndebug2: peer server KEXINIT proposal  # \u670d\u52a1\u5668\u7684\u7b97\u6cd5\u63d0\u6848\n# \u670d\u52a1\u5668\u652f\u6301\u7684\u52a0\u5bc6\u7b97\u6cd5\uff08\u6bd4\u5ba2\u6237\u7aef\u591a\u4e86blowfish-cbc\/3des-cbc\u7b49\uff09\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,...,blowfish-cbc,3des-cbc\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,...,blowfish-cbc,3des-cbc<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"3_%E6%9C%8D%E5%8A%A1%E5%99%A8%E6%9C%80%E7%BB%88%E9%80%89%E5%AE%9A%E7%AE%97%E6%B3%95%EF%BC%88%E6%8B%8D%E6%9D%BF%EF%BC%89\"><\/span>3. \u670d\u52a1\u5668\u6700\u7ec8\u9009\u5b9a\u7b97\u6cd5\uff08\u62cd\u677f\uff09<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: kex: algorithm: curve25519-sha256  # \u6700\u7ec8\u9009\u7684\u5bc6\u94a5\u4ea4\u6362\u7b97\u6cd5\ndebug1: kex: host key algorithm: ecdsa-sha2-nistp256  # \u6700\u7ec8\u9009\u7684\u4e3b\u673a\u5bc6\u94a5\u7b97\u6cd5\n# \u6838\u5fc3\u7ed3\u8bba\uff1a\u670d\u52a1\u5668\u9009\u5b9a chacha20-poly1305@openssh.com \u4f5c\u4e3a\u52a0\u5bc6\u7b97\u6cd5\uff01\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: &lt;implicit> compression: none\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: &lt;implicit> compression: none<\/code><\/pre>\n\n\n\n<p>\u670d\u52a1\u5668\u4ece\u5ba2\u6237\u7aef\u7684\u5217\u8868\u91cc\uff0c\u9009\u4e86\u5ba2\u6237\u7aef\u4f18\u5148\u7ea7\u6700\u9ad8\u7684 <code>chacha20-poly1305@openssh.com<\/code>\uff08\u56e0\u4e3a\u670d\u52a1\u5668\u4e5f\u652f\u6301\u8fd9\u4e2a\u7b97\u6cd5\uff09\uff0cMAC \u663e\u793a<code>&lt;implicit><\/code>\u662f\u56e0\u4e3a chacha20-poly1305 \u672c\u8eab\u96c6\u6210\u4e86 MAC\uff08Poly1305\uff09\uff0c\u4e0d\u9700\u8981\u989d\u5916\u6307\u5b9a\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E4%BA%94%E3%80%81%E6%9C%8D%E5%8A%A1%E5%99%A8%E8%BA%AB%E4%BB%BD%E9%AA%8C%E8%AF%81%EF%BC%88%E7%A1%AE%E8%AE%A4%E4%B8%8D%E6%98%AF%E9%92%93%E9%B1%BC%E6%9C%8D%E5%8A%A1%E5%99%A8%EF%BC%89\"><\/span>\u4e94\u3001\u670d\u52a1\u5668\u8eab\u4efd\u9a8c\u8bc1\uff08\u786e\u8ba4\u4e0d\u662f\u9493\u9c7c\u670d\u52a1\u5668\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: Server host key: ecdsa-sha2-nistp256 SHA256:eg6ad6FQeVkYH9FRuSXaQPgnw3gsKBERhHIWaxsWpwc\ndebug3: load_hostkeys: loaded 1 keys from 10.0.2.201\ndebug1: Host '10.0.2.201' is known and matches the ECDSA host key.<\/code><\/pre>\n\n\n\n<p>\u5ba2\u6237\u7aef\u68c0\u67e5\u670d\u52a1\u5668\u7684\u516c\u94a5\u662f\u5426\u5728 <code>\/root\/.ssh\/known_hosts<\/code> \u91cc\uff08\u4e4b\u524d\u8fde\u8fc7\uff0c\u5df2\u7ecf\u8bb0\u5f55\uff09\uff0c\u786e\u8ba4\u662f\u76ee\u6807\u670d\u52a1\u5668\u800c\u975e\u4eff\u5192\u7684\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E5%85%AD%E3%80%81%E4%BC%9A%E8%AF%9D%E5%AF%86%E9%92%A5%E7%94%9F%E6%88%90%EF%BC%88%E5%8A%A0%E5%AF%86%E9%80%9A%E4%BF%A1%E5%87%86%E5%A4%87%EF%BC%89\"><\/span>\u516d\u3001\u4f1a\u8bdd\u5bc6\u94a5\u751f\u6210\uff08\u52a0\u5bc6\u901a\u4fe1\u51c6\u5907\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: SSH2_MSG_NEWKEYS sent  # \u5ba2\u6237\u7aef\u751f\u6210\u4f1a\u8bdd\u5bc6\u94a5\u5e76\u544a\u77e5\u670d\u52a1\u5668\ndebug1: SSH2_MSG_NEWKEYS received  # \u670d\u52a1\u5668\u786e\u8ba4\u4f1a\u8bdd\u5bc6\u94a5\ndebug1: rekey after 134217728 blocks  # \u7ea6\u5b9a\u4f20\u8f93\u591a\u5c11\u6570\u636e\u540e\u91cd\u65b0\u534f\u5546\u5bc6\u94a5\uff08\u5b89\u5168\u673a\u5236\uff09<\/code><\/pre>\n\n\n\n<p>\u53cc\u65b9\u7528\u534f\u5546\u597d\u7684\u5bc6\u94a5\u4ea4\u6362\u7b97\u6cd5\uff0c\u751f\u6210\u4e00\u4e2a\u300c\u4e34\u65f6\u4f1a\u8bdd\u5bc6\u94a5\u300d\uff0c\u540e\u7eed\u6240\u6709\u901a\u4fe1\u90fd\u7528\u8fd9\u4e2a\u5bc6\u94a5 + \u9009\u5b9a\u7684 chacha20 \u7b97\u6cd5\u52a0\u5bc6\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E4%B8%83%E3%80%81%E8%BA%AB%E4%BB%BD%E8%AE%A4%E8%AF%81%E7%8E%AF%E8%8A%82%EF%BC%88%E7%99%BB%E5%BD%95%E9%AA%8C%E8%AF%81%EF%BC%89\"><\/span>\u4e03\u3001\u8eab\u4efd\u8ba4\u8bc1\u73af\u8282\uff08\u767b\u5f55\u9a8c\u8bc1\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password  # \u670d\u52a1\u5668\u652f\u6301\u7684\u8ba4\u8bc1\u65b9\u5f0f\n# 1. \u5c1d\u8bd5GSSAPI\u8ba4\u8bc1\uff08Kerberos\uff09\uff1a\u5931\u8d25\uff08\u65e0\u51ed\u8bc1\uff09\ndebug1: Next authentication method: gssapi-keyex\ndebug1: No valid Key exchange context\n# 2. \u5c1d\u8bd5\u516c\u94a5\u8ba4\u8bc1\uff1a\u5931\u8d25\uff08\u627e\u4e0d\u5230\u79c1\u94a5\u6587\u4ef6\uff09\ndebug1: Next authentication method: publickey\ndebug1: Trying private key: \/root\/.ssh\/id_rsa\ndebug3: no such identity: \/root\/.ssh\/id_rsa: No such file or directory\n# 3. \u6700\u540e\u5c1d\u8bd5\u5bc6\u7801\u8ba4\u8bc1\uff1a\u63d0\u793a\u8f93\u5165\u5bc6\u7801\ndebug1: Next authentication method: password\nroot@10.0.2.201's password:<\/code><\/pre>\n\n\n\n<p>SSH \u6309\u4f18\u5148\u7ea7\u4f9d\u6b21\u5c1d\u8bd5\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u6700\u7ec8\u843d\u5230\u5bc6\u7801\u8ba4\u8bc1\uff0c\u7b49\u5f85\u4f60\u8f93\u5165\u5bc6\u7801\u5b8c\u6210\u767b\u5f55\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E6%80%BB%E7%BB%93%EF%BC%88%E6%A0%B8%E5%BF%83%E5%85%B3%E9%94%AE%E7%82%B9%EF%BC%89\"><\/span>\u603b\u7ed3\uff08\u6838\u5fc3\u5173\u952e\u70b9\uff09<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u52a0\u5bc6\u7b97\u6cd5\u534f\u5546\u903b\u8f91<\/strong>\uff1a\u5ba2\u6237\u7aef\u628a <code>chacha20-poly1305<\/code> \u653e\u5728\u7b97\u6cd5\u5217\u8868\u9996\u4f4d\uff0c\u670d\u52a1\u5668\u56e0\u652f\u6301\u8be5\u7b97\u6cd5\uff0c\u6700\u7ec8\u9009\u5b9a\u5b83\u4f5c\u4e3a\u901a\u4fe1\u52a0\u5bc6\u7b97\u6cd5\u3002<\/li>\n\n\n\n<li><strong>\u8fde\u63a5\u6838\u5fc3\u6d41\u7a0b<\/strong>\uff1aTCP \u8fde\u63a5 \u2192 \u7248\u672c\u534f\u5546 \u2192 \u7b97\u6cd5\u534f\u5546 \u2192 \u670d\u52a1\u5668\u8eab\u4efd\u9a8c\u8bc1 \u2192 \u4f1a\u8bdd\u5bc6\u94a5\u751f\u6210 \u2192 \u767b\u5f55\u8ba4\u8bc1\u3002<\/li>\n\n\n\n<li><strong>\u65e5\u5fd7\u5173\u952e\u4fe1\u606f<\/strong>\uff1a<code>kex: server->client cipher: chacha20-poly1305@openssh.com<\/code> \u662f\u6700\u7ec8\u52a0\u5bc6\u7b97\u6cd5\u7684\u7ed3\u8bba\uff0c\u4e5f\u662f\u4f60\u6700\u9700\u8981\u5173\u6ce8\u7684\u884c\u3002<\/li>\n<\/ol>\n\n\n\n<p>\u6574\u4e2a\u8fc7\u7a0b\uff0c<strong>\u5ba2\u6237\u7aef\u63d0\u504f\u597d\u5217\u8868\uff0c\u670d\u52a1\u5668\u505a\u6700\u7ec8\u51b3\u5b9a<\/strong>\uff0c\u8fd9\u91cc\u670d\u52a1\u5668\u9009\u62e9\u4e86\u5ba2\u6237\u7aef\u6700\u4f18\u5148\u7684 chacha20-poly1305\u3002<\/p>","protected":false},"excerpt":{"rendered":"<p>I. Basic Environment and Connection Initialization II. Identity File Detection SSH will prioritize \"public key authentication\" by default, so go to \/root\/.ssh first... <a href=\"https:\/\/www.gbase8.cn\/en\/13358\" class=\"more-link\">Read more <span class=\"screen-reader-text\">Detailed Explanation of Underlying Communication Process and -vvv Parameter Output During SSH Connection<\/span><\/a><\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[72],"class_list":["post-13358","post","type-post","status-publish","format-standard","hentry","category-1","tag-linux"],"_links":{"self":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/13358","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/comments?post=13358"}],"version-history":[{"count":2,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/13358\/revisions"}],"predecessor-version":[{"id":13360,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/13358\/revisions\/13360"}],"wp:attachment":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/media?parent=13358"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/categories?post=13358"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/tags?post=13358"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}