SSH on Ventura – The way to cope with hosts operating very previous variations of OpenSSH?

Ventura [13.0 Beta (22A5352e)] ships with OpenSSH_9.0p1.

In line with the OpenSSH launch notes:

This launch disables RSA signatures utilizing the SHA-1 hash algorithm
>by default. This modification has been made because the SHA-1 hash algorithm is
>cryptographically damaged, and it’s doable to create chosen-prefix
>hash collisions for <USD$50K

The net host to which I wish to join has OpenSSH_5.3p1 which appears to be configured to solely provide RSA and DSA:

no matching host key kind discovered. Their provide: ssh-rsa,ssh-dss

I would like to make use of ed25519 keys. I briefly “mounted” the issue by including the next to my /and many others/ssh/ssh_config file:

HostKeyAlgorithms ssh-rsa
PubkeyAcceptedKeyTypes ssh-rsa

There have to be a greater approach. After all, I can not make the net host improve their OpenSSH, so the repair must be on my finish.

Any strategies?

Latest articles

Related articles

Leave a reply

Please enter your comment!
Please enter your name here