HEADS UP: openssh may be troublesome

To: current-users%NetBSD.org@localhost
Subject: HEADS UP: openssh may be troublesome
From: Martin Husemann <martin%duskware.de@localhost>
Date: Fri, 11 Mar 2016 22:08:59 +0100

Beware when updating -current - the ssh version now on HEAD once again
deliberately breaks connectivity to some machines, especially some Sun
ALOM console processors.

The cryptic message they throw is:

ssh_dispatch_run_fatal: Connection to 192.168.150.113 port 22: DH GEX group out of range

which means your server is using (what upstream idiots consider) too few
bits for Diffie Hellman.

You can work around it by using -oKexAlgorithms=diffie-hellman-group1-sha1 

At least this time there is a command line solution on the client side!

The other current issue is that both sshd and ssh are completely 
non-operational on sparc64, we will need to test other architectures too.

Martin

Follow-Ups:
- Re: HEADS UP: openssh may be troublesome
  - From: Martin Husemann

Prev by Date: Automated report: NetBSD-current/sparc build failure
Next by Date: build breakage, speeling
Previous by Thread: ssh build failure
Next by Thread: Re: HEADS UP: openssh may be troublesome
Indexes:

Home | Main Index | Thread Index | Old Index