Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 22 Jan 2016 22:56:48 +0100
From:      =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
To:        Bryan Drewery <bdrewery@FreeBSD.org>
Cc:        Conrad Meyer <cem@FreeBSD.org>, src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org
Subject:   Re: svn commit: r294495 - in head: . crypto/openssh
Message-ID:  <868u3he0rj.fsf@desk.des.no>
In-Reply-To: <56A2A27A.2020801@FreeBSD.org> (Bryan Drewery's message of "Fri,  22 Jan 2016 13:43:22 -0800")
References:  <201601211110.u0LBAEI1081858@repo.freebsd.org> <CAG6CVpXXadnEJt%2B=tjiyhpk04LtTeiAoOqYeTn2-bsxwJjmTAw@mail.gmail.com> <86r3hauf88.fsf@desk.des.no> <56A2A27A.2020801@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
Bryan Drewery <bdrewery@FreeBSD.org> writes:
> I've used these in sshd_config and ssh_config to restore some removed
> functionality:
>
> Ciphers +blowfish-cbc,arcfour,aes128-cbc,3des-cbc
> KexAlgorithms +diffie-hellman-group1-sha1

Do you actually need these?  Do you know of any clients or servers which
do not support any of the other ciphers and key exchange algorithms
which OpenSSH offers?

> PubkeyAcceptedKeyTypes +ssh-dss,ssh-dss-cert-v01@openssh.com
> HostkeyAlgorithms +ssh-dss,ssh-dss-cert-v01@openssh.com

These are already enabled.

DES
--=20
Dag-Erling Sm=C3=B8rgrav - des@des.no

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?868u3he0rj.fsf>