Subject: Re: inetd.conf defaults
To: NetBSD Networking Technical Discussion List <>
From: Andrew Brown <>
List: tech-net
Date: 05/30/2000 18:30:51
>Those features should not be used except under duress (eg. for a very
>short period while all clients are upgraded).  It has been strongly by
>several folks, including SSH's author, that backward compatability with
>SSH-v1 actually makes SSH-v2 somewhat less secure than SSH-v1 alone.

i ran them together for a very short period of time, and then removed
the ssh2 stuff.  it was more trouble than it was worth.  i can't see
how it would make it less secure though...

>Discussion of this can probably still be found in SSH mailing list
>archives, if you can find them....  I'm still not sure why the SSH folks
>caved in and accepted the patch which enabled this feature.

probably because people using just ssh to log in found it *incredibly*
tedious to try to log in to things that were running different
versions of ssh.

|-----< "CODE WARRIOR" >-----|             * "ah!  i see you have the internet (Andrew Brown)                that goes *ping*!"       * "information is power -- share the wealth."