红帽全球峰会第 16 章 将 SSH 配置为使用 RSA
SSH 用于克隆 Git 存储库。默认情况下,DSA 加密算法由 Business Central 提供。但是,一些 SSH 客户端(如 Fedora 23 环境中的 SSH 客户端)使用 RSA 算法而不是 DSA 算法。Business Central 包含一个系统属性,可用于从 DSA 切换到 RSA。
注意
支持的配置(如 Red Hat Enterprise Linux 7)上的 SSH 客户端不受此问题的影响。有关支持的配置列表,请参阅 Red Hat Decision Manager 7 支持的配置。
流程
完成以下任务之一来启用此系统属性:
修改客户端上的
~/.ssh/config文件,如下所示,以强制 SSH 客户端接受已弃用的 DSA 算法:Host <SERVER_IP> HostKeyAlgorithms +ssh-dssHost <SERVER_IP> HostKeyAlgorithms +ssh-dssCopy to Clipboard Copied! Toggle word wrap Toggle overflow 启动 Business Central 时包括
-Dorg.uberfire.nio.git.ssh.algorithm=RSA参数,例如:./standalone.sh -c standalone-full.xml
$ ./standalone.sh -c standalone-full.xml -Dorg.uberfire.nio.git.ssh.algorithm=RSACopy to Clipboard Copied! Toggle word wrap Toggle overflow
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}