Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?

To: debian-user@lists.debian.org
Subject: Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
From: Stefan Monnier <monnier@iro.umontreal.ca>
Date: Tue, 06 Jul 2021 12:05:41 -0400
Message-id: <[🔎] jwvh7h7toqo.fsf-monnier+gmane.linux.debian.user@gnu.org>
References: <[🔎] YOQW4Iuhhk8JAkHE@h5.or.at> <[🔎] 20210706125235.GA18955@connexer.com>

> Like you, I have been using CLI options to the ssh command to adjust the
> necessary algorithms if I need something "insecure".

You should be able to set that option for a specific (set of) hosts in
.ssh/config so you don't have to repeat it on the CLI every time.

> My thought is that once that no longer serves the purpose, I would
> setup a VM, container,

I think the first reaction should be to report it as a bug, so that the
old cipher is re-added.  I think the same argument in favor of including
the "none" cipher should apply to including old deprecated ciphers.


        Stefan

Reply to:

Follow-Ups:
- Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
  - From: "Andrew M.A. Cater" <amacater@einval.com>

References:
- Suggested way to ssh into obsolete devices (with old ssh crypto)?
  - From: Ralph Aichinger <ra@pi.h5.or.at>
- Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
  - From: Roberto C. Sánchez <roberto@debian.org>

Prev by Date: Re: text size xfce4 panel
Next by Date: Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
Previous by thread: Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
Next by thread: Re: Suggested way to ssh into obsolete devices (with old ssh crypto)?
Index(es):
- Date
- Thread