Linux Survival Basics
Read-only, sensitive outputRun SSH Verbose Auth Test
You need client-side auth negotiation detail for one explicit key.
Command
ssh -vvv -o IdentitiesOnly=yes -i ~/.ssh/id_ed25519 user@example.com
Before you run this
System impact: Read-only. Output may expose users, paths, tokens, keys, IPs, process arguments, or log details.
When not to use it: Do not share verbose SSH output without redacting hostnames, users, key paths, and fingerprints.
Expected output
Verbose SSH debug lines showing identity selection and auth result.
System impact
Read-only, sensitive output. Nothing changes. The command reads current state and prints diagnostic evidence.
Recovery / rollback: no state is changed.
When to use it
Use when server logs are unavailable or the client chooses the wrong identity.
When not to use it
Do not share verbose SSH output without redacting hostnames, users, key paths, and fingerprints.
Common misread
Do not share verbose SSH output without redacting hostnames, users, key paths, and fingerprints.
Example run
Commands shown
These are the commands shown for inspection. Treat them as an example, not proof that your system will behave identically.
ssh -vvv -o IdentitiesOnly=yes -i ~/.ssh/id_ed25519 user@example.comssh -vvv -o IdentitiesOnly=yes -i ~/.ssh/id_ed25519 user@example.com
next steps
Related commands
Test SSH with One Identity File
Force one key when the agent offers too many identities.
ssh -o IdentitiesOnly=yes -i ~/.ssh/id_ed25519 user@example.com
Show HTTPS Certificate with curl
curl can show the certificate path a client actually sees.
curl -Iv https://example.com/ 2>&1 | sed -n "/SSL connection/,/expire date/p"
Check Domain A Records
A renewal can fail because DNS points elsewhere.
dig +short example.com A
Find known_hosts Lines by Name
See the stored entry before editing.
grep -n 'hostname' ~/.ssh/known_hosts
Show Served Certificate SANs
SANs decide which hostnames the certificate covers.
openssl s_client -connect example.com:443 -servername example.com </dev/null 2>/dev/null | openssl x509 -noout -ext subjectAltName
next diagnostic step
Where to go from this command
- Related problem hub Use this command as part of the repair path.
Study mapping
Use this as independent command practice: read the notes, predict the output, then compare it with the example before using a real shell.
Independent study support only. No affiliation, endorsement, exam dumps, or real exam questions.