>Those features should not be used except under duress (eg. for a very
>short period while all clients are upgraded).  It has been strongly by
>several folks, including SSH's author, that backward compatability with
>SSH-v1 actually makes SSH-v2 somewhat less secure than SSH-v1 alone.

i ran them together for a very short period of time, and then removed
the ssh2 stuff.  it was more trouble than it was worth.  i can't see
how it would make it less secure though...

>Discussion of this can probably still be found in SSH mailing list
>archives, if you can find them....  I'm still not sure why the SSH folks
>caved in and accepted the patch which enabled this feature.

probably because people using just ssh to log in found it *incredibly*
tedious to try to log in to things that were running different
versions of ssh.

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
andrew@crossbar.com       * "information is power -- share the wealth."