[40054] in North American Network Operators' Group
Re: telnet vs ssh on Core equipment , looking for reasons why ?
daemon@ATHENA.MIT.EDU (Charles Sprickman)
Tue Jul 31 17:06:08 2001
Date: Tue, 31 Jul 2001 17:03:55 -0400 (EDT)
From: Charles Sprickman <spork@inch.com>
To: Kevin Steves <stevesk@pobox.com>
Cc: <nanog@merit.edu>
In-Reply-To: <Pine.HPX.4.33.0107311337210.1530-100000@jenny>
Message-ID: <Pine.BSF.4.33.0107311657450.22099-100000@shell.inch.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, 31 Jul 2001, Kevin Steves wrote:
> On Tue, 31 Jul 2001, Charles Sprickman wrote:
> :6) Finding a unix ssh that supports 3DES and DES.
> :
> :I curse those OpenSSH folks for making me have to trudge through the code
> :to find out how to get DES working...
>
> DES is supported in openssh for protocol 1 in the client with ssh -c des.
Ooops. The FreeBSD port I built from is trailing a bit:
spork@tiny[~]$ ssh -V
SSH Version OpenSSH_2.2.0, protocol versions 1.5/2.0.
And:
spork@tiny[~]$ ssh -c des 216.223.x.x
Unknown cipher type 'des'
However it appears newer versions include it, but warn you:
oscar[/var/spool/tftp/ios]# ssh -c des -l foo 216.223.x.x
Warning: use of DES is strongly discouraged due to cryptographic weaknesses
foo@216.223.x.x's password:
Sorry for the noise,
Charles
> also, does anyone curse cisco for refusing to support ssh protocol 2?
> they have much more resources than the openssh team.
>
