North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: telnet vs ssh on Core equipment , looking for reasons why ?

  • From: Charles Sprickman
  • Date: Tue Jul 31 17:08:51 2001

On Tue, 31 Jul 2001, Kevin Steves wrote:

> On Tue, 31 Jul 2001, Charles Sprickman wrote:
> :6) Finding a unix ssh that supports 3DES and DES.
> :
> :I curse those OpenSSH folks for making me have to trudge through the code
> :to find out how to get DES working...
>
> DES is supported in openssh for protocol 1 in the client with ssh -c des.

Ooops.  The FreeBSD port I built from is trailing a bit:

[email protected][~]$ ssh -V
SSH Version OpenSSH_2.2.0, protocol versions 1.5/2.0.

And:

[email protected][~]$ ssh -c des 216.223.x.x
Unknown cipher type 'des'

However it appears newer versions include it, but warn you:

oscar[/var/spool/tftp/ios]# ssh -c des -l foo 216.223.x.x
Warning: use of DES is strongly discouraged due to cryptographic weaknesses
[email protected]'s password:

Sorry for the noise,

Charles

> also, does anyone curse cisco for refusing to support ssh protocol 2?
> they have much more resources than the openssh team.
>