getting ssh1 support

To: debian-user@lists.debian.org
Subject: getting ssh1 support
From: Mike <stuff@dustsmoke.com>
Date: Tue, 08 Feb 2005 23:13:53 -0700
Message-id: <[🔎] 4209AA21.5060605@dustsmoke.com>

Sorry, I am a bit lost here.

From what I can tell, there is a vulnerability with SSH1. It is notadvised.

The problem I have is that I need certian applications that use sftpsuch as dreamweaver do not support ssh2. And thus far I have beenrelying on ftp which I would think is 'less secure' than a vulnerabilitywith SSH1. Am I wrong? I have been trying to wait the stink eye contestout with macromedia but as far as I can tell..... This is never going tohappen on their end.


So I try to generate a key

ssh-keygen -t rsa1 -f /etc/ssh/ssh_host_key

then edit /etc/ssh/sshd_config

Protocol 2,1

try to restart ssh and I get;
Disabling protocol version 1. Could not load host key

Restarting OpenBSD Secure Shell server: sshdDisabling protocol version1. Could not load host key

Can somebody point me in the right direction? Also, would the SSH1vulnerability be cut down if I only allow 1 non-root user SSH access viaAllowedUsers?


Thanks,
-Mike

Reply to:

Follow-Ups:
- Re: getting ssh1 support
  - From: "Roberto C. Sanchez" <roberto@familiasanchez.net>

Prev by Date: Re: How do I unpin a package in synaptic?
Next by Date: Re: CONNECT in apache logs
Previous by thread: Re: How do I unpin a package in synaptic?
Next by thread: Re: getting ssh1 support
Index(es):
- Date
- Thread