Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Option to enable insecure SSH algos per-target - not working #983

Open
greg1985 opened this issue Apr 17, 2024 · 2 comments
Open

Option to enable insecure SSH algos per-target - not working #983

greg1985 opened this issue Apr 17, 2024 · 2 comments

Comments

@greg1985
Copy link

          `OpenSSH_8.2p1 Ubuntu-4ubuntu0.4, OpenSSL 1.1.1f  31 Mar 2020

debug1: Reading configuration data /home/maciek/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/.conf matched no files
debug1: /etc/ssh/ssh_config line 21: Applying options for *
debug1: Connecting to 172.17.61.232 [172.17.61.232] port 22.
debug1: Connection established.
debug1: identity file /home/maciek/.ssh/id_rsa type 0
debug1: identity file /home/maciek/.ssh/id_rsa-cert type -1
debug1: identity file /home/maciek/.ssh/id_dsa type -1
debug1: identity file /home/maciek/.ssh/id_dsa-cert type -1
debug1: identity file /home/maciek/.ssh/id_ecdsa type -1
debug1: identity file /home/maciek/.ssh/id_ecdsa-cert type -1
debug1: identity file /home/maciek/.ssh/id_ecdsa_sk type -1
debug1: identity file /home/maciek/.ssh/id_ecdsa_sk-cert type -1
debug1: identity file /home/maciek/.ssh/id_ed25519 type -1
debug1: identity file /home/maciek/.ssh/id_ed25519-cert type -1
debug1: identity file /home/maciek/.ssh/id_ed25519_sk type -1
debug1: identity file /home/maciek/.ssh/id_ed25519_sk-cert type -1
debug1: identity file /home/maciek/.ssh/id_xmss type -1
debug1: identity file /home/maciek/.ssh/id_xmss-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4
debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8p1
debug1: match: OpenSSH_3.8p1 pat OpenSSH_3.
compat 0x01000002
debug1: Authenticating to 172.17.61.232:22 as 'admin'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: (no match)
Unable to negotiate with 172.17.61.232 port 22: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1`

Originally posted by @greg1985 in #961 (comment)

@greg1985 greg1985 changed the title `OpenSSH_8.2p1 Ubuntu-4ubuntu0.4, OpenSSL 1.1.1f 31 Mar 2020 Option to enable insecure SSH algos per-target - not working Apr 17, 2024
@diogofnmachado
Copy link

Unfortunately, same here on 0.9.1. Right after updating the config the toggle turns off, and we get the Kex Error on logs.

At the moment, I'm unable to change the config on my target 😢

@budachst
Copy link

Same here… we do have quite a lot of old stuff, which currently cannot be used with Warpgate, due to this issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants