From owner-freebsd-security@freebsd.org Tue Jan 31 21:41:34 2017 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EB4B6CCA116 for ; Tue, 31 Jan 2017 21:41:34 +0000 (UTC) (envelope-from mtoth@queldor.net) Received: from queldor.net (mail.queldor.net [209.6.82.251]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id C84F41886 for ; Tue, 31 Jan 2017 21:41:34 +0000 (UTC) (envelope-from mtoth@queldor.net) Received: from c-73-89-119-190.hsd1.ma.comcast.net ([73.89.119.190] helo=[10.0.1.3]) by queldor.net with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.87 (FreeBSD)) (envelope-from ) id 1cYgB6-000Lrk-TE; Tue, 31 Jan 2017 16:41:29 -0500 Subject: Re: fbsd11 & sshv1 To: heasley , =?UTF-8?Q?Dag-Erling_Sm=c3=b8rgrav?= References: <20170127173016.GF12175@shrubbery.net> <867f5c66yr.fsf@desk.des.no> <20170130195226.GD73060@shrubbery.net> <867f5bfmde.fsf@desk.des.no> <20170131201722.GH11924@shrubbery.net> Cc: freebsd-security@freebsd.org From: Michael Toth Message-ID: <3d6298a5-bcea-4880-024e-56628308d8e2@queldor.net> Date: Tue, 31 Jan 2017 16:41:27 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <20170131201722.GH11924@shrubbery.net> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit X-Trace: U2FsdGVkX1+StRmaQZN+C7POmiw8584oKx7hanEwhHZjIIJeap8epLDHQaywcjZDfAzL9IurV3s= X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Jan 2017 21:41:35 -0000 On 1/31/2017 3:17 PM, heasley wrote: > Tue, Jan 31, 2017 at 01:24:29PM +0100, Dag-Erling Smørgrav: >> heasley writes: >>> Dag-Erling Smørgrav writes: >>>> FreeBSD 10 supports SSHv1 and will continue to do so. FreeBSD 11 >>>> and 12 do not, and neither does the openssh-portable port. I'm >>>> afraid you will have to find some other SSH client. >>> That is sad; >> >> You know what would be even sadder? If the OpenSSH developers had to >> continue to devote significant resources to maintaining a rat's nest of >> legacy code so 0.0001% of their users could continue to use an obsolete >> protocol to connect to obsolete equipment, instead of devoting those >> same resources to developing new features and improving existing ones. >> Especially when those users have plenty of alternatives to choose from, >> including but not limited to security/putty. > > I was not suggesting that openssl maintain their apparently messy code; > they're maintaining it already, for whatever the remaining period is. > i'm suggesting a port with a v1 client; that is built with all the other > binary ports for abi changes and whatever else is reasonable. yes, i > can build my own, but i feel it should be a port. > > I appreciate the putty suggestion, but it appears to be graphical only. > Happy to have it pointed-out that I've missed a port having v1. > > i also understand the devote position of buy new equipment to advance > security; its simply not going to happen anytime soon. and i'm not alone. > i'm not rich, i don't crontrol depreciation schedules, etc etc. > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > There is a non-graphical port of putty (putty-nogtk) which installs plink