Date: 30 Oct 2001 15:12:43 -0800 From: Mark Foster <mdf@enic.cc> To: freebsd-stable@freebsd.org Subject: suggestion about sshd_config default Message-ID: <1004483564.15832.67.camel@smokey.lan.enic.cc>
next in thread | raw e-mail | index | archive | help
I'm requesting that the default openssh configuration be changed to say Protocol 2 instead of #Protocol 2,1 Protocol 1 is the subject of a number of recent security advisories, and it's use should be discouraged. The behavior with the line commented as it is (by default) now seems to be to NOT use protocol 1 or 2 but 1.99. [this is the output from 'ssh -v hostname' on the client] debug1: Remote protocol version 1.99, remote software version OpenSSH_2.3.0 FreeBSD localisations 20010713 refs: http://razor.bindview.com/publish/advisories/adv_ssh1crc.html ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01%3A24.ssh.asc -- -mdf [Mark D. Foster] Phone: 206-381-0449 System Administrator - eNIC Corporation Fax: 206-329-7107 <mdf@enic.cc> or mergatroid on AIM To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1004483564.15832.67.camel>