RSA modulus too small: 512 < minimum 768 bits

时间:2021-04-30 16:03:28

RSA modulus too small: 512 < minimum 768 bits

$ ssh admin@192.168.50.46

ssh_rsa_verify: RSA modulus too small: 512 < minimum 768 bits

key_verify failed for server_host_key
fgvm-ha1 # config system global 

fgvm-ha1 (global) # set admin-ssh

admin-ssh-grace-time    Maximum time in seconds permitted between making an SSH connection to the FortiGate unit and authenticating (10 - 3600 sec (1 hour), default 120).

admin-ssh-password      Enable/disable password authentication for SSH admin access.

admin-ssh-port          Administrative access port for SSH. (1 - 65535, default = 22).

admin-ssh-v1            Enable/disable SSH v1 compatibility.

fgvm-ha1 (global) # set admin-ssh-v1 enable 

fgvm-ha1 (global) # end

fgvm-ha1 # show system global

config system global

    set admin-ssh-v1 enable

    set alias "fgvm-ha1"

    set hostname "fgvm-ha1"

    set language simch

    set timezone 55

end
 
vyos@ispout-vyos:~$ ssh -v -1 -c des admin@192.168.50.46

OpenSSH_5.5p1 Debian-6+squeeze5, OpenSSL 1.0.2l  25 May 2017

debug1: Reading configuration data /etc/ssh/ssh_config

debug1: Applying options for *

debug1: Connecting to 192.168.50.46 [192.168.50.46] port 22.

debug1: Connection established.

debug1: identity file /home/vyos/.ssh/identity type -1

debug1: identity file /home/vyos/.ssh/identity-cert type -1

debug1: Remote protocol version 1.99, remote software version K8FnH

debug1: no match: K8FnH

debug1: Local version string SSH-1.5-OpenSSH_5.5p1 Debian-6+squeeze5

debug1: Waiting for server public key.

debug1: Received server public key (1152 bits) and host key (1024 bits).

debug1: Host '192.168.50.46' is known and matches the RSA1 host key.

debug1: Found key in /home/vyos/.ssh/known_hosts:4

debug1: Encryption type: des

debug1: Sent encrypted session key.

Warning: use of DES is strongly discouraged due to cryptographic weaknesses

debug1: Installing crc compensation attack detector.

debug1: Received encrypted confirmation.

debug1: Doing challenge response authentication.

debug1: No challenge.

debug1: Doing password authentication.

admin@192.168.50.46's password:

debug1: Requesting pty.

debug1: Requesting shell.

debug1: Entering interactive session.

debug1: fd 0 clearing O_NONBLOCK

fgvm-ha1 #

fgvm-ha1 # show system global

config system global

    set admin-ssh-v1 enable

    set alias "fgvm-ha1"

    set hostname "fgvm-ha1"

    set language simch

    set timezone 55

end

fgvm-ha1 #

============ End

相关文章