This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: Sshd behaving strangely...
- From: Zdzislaw Meglicki <zdzisiekm at sbcglobal dot net>
- To: "cygwin at cygwin dot com" <cygwin at cygwin dot com>
- Date: Sun, 6 Sep 2015 15:46:03 +0000 (UTC)
- Subject: Re: Sshd behaving strangely...
- Authentication-results: sourceware.org; auth=none
- Reply-to: Zdzislaw Meglicki <zdzisiekm at sbcglobal dot net>
> OpenSSH 7.0 (and thus the current 7.1) deprecated a couple
> of old and insecure ciphers. Probably that's the reason.
Well, what I mean is that it is strange that sshd-7.1p1-1 accepts
a connection from ssh-3.9p1, upon announcing that the "key type ssh-dss [is] not in PubkeyAcceptedKeyTypes," and lets the user in having accepted
the password, yet rejects connection from ssh-6.8p1-1 not even allowing
for the presentation of a password, and claims that "seteuid operation
[is] not permitted."
Why was the operation permitted when the key was not in
PubkeyAcceptedKeyTypes?
This seems to me to be a security bug.
And I still wonder how to configure sshd to allow normal connections
with accepted key types, any documentation out there that would help?
Zdzislaw (Gustav) Meglicki
Indiana University
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple