CentOS7.2升级openSSH为7.5P1无法登录的处理过程

Posted

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了CentOS7.2升级openSSH为7.5P1无法登录的处理过程相关的知识,希望对你有一定的参考价值。

1.开始安装高版本的的openSSH的时候,系统自带的没有卸载,重启sshd进程,sshd -h查看也是后面安装的高版本,但是telnet 127.0.0.1 22发现仍然还是老版本的信息,这时才发现应该时没有安装成功
2.于是,卸载重新安装,再次重启,这次telnet 127.0.0.1 22发现版本已经变成7.5的了
3.但是这时,ssh无法登陆,告诉/etc/bash: Permission denied
4.这时setenforce 0,倒是能正常ssh登陆,不相信必须得关闭selinux
5.于是setenforce 1,ssh登陆,查看/var/log/message,发现有如下信息:
Feb 1 22:28:57 localhost setroubleshoot: SELinux is preventing /usr/local/sbin/sshd from using the transition access on a process. For complete SELinux messages. run sealert -l 6ca7e4db-d52f-41a3-8199-505f7a77a6c9
Feb 1 22:28:57 localhost python: SELinux is preventing /usr/local/sbin/sshd from using the transition access on a process.#012#012* Plugin catchall (100. confidence) suggests **#012#012If you believe that sshd should be allowed transition access on processes labeled unconfined_t by default.#012Then you should report this as a bug.#012You can generate a local policy module to allow this access.#012Do#012allow this access for now by executing:#012# ausearch -c ‘sshd‘ --raw | audit2allow -M my-sshd#012# semodule -i my-sshd.pp#012

6.里面已经说解决方法,于是运行下面两个命令:
ausearch -c ‘sshd‘ --raw | audit2allow -M my-sshd
semodule -i my-sshd.pp
搞定

以上是关于CentOS7.2升级openSSH为7.5P1无法登录的处理过程的主要内容,如果未能解决你的问题,请参考以下文章

openssh升级到openssh-7.5p1踩坑

升级到openssh 7.5 p1,无法root登录

redhat linux6.5升级openssh到7.5p1

Centos6/Centos5下openssh升级到openssh-7.5p1

openssh升级到7.5 为啥无法登陆

centos7.2升级openssh7.9p1