info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1
224 views
Skip to first unread message
Antony Somerville
Aug 12, 2021, 11:11:57 PM8/12/21
to
Hello,
I have run into an isue where putty key exchange is unable to agree with a device I only have ssh access to.
How can I update putty.exe to handle diffie-hellman-group16-sha1 ?
OR is there a client out there I can use in the mean time until putty updates come through ?
The error when I SSH is:
Key exchange failed.
No compatible key-exchange method. The server supports these methods: diffie-hellman-group16-sha1
Regards
Antony
I have run into an isue where putty key exchange is unable to agree with a device I only have ssh access to.
How can I update putty.exe to handle diffie-hellman-group16-sha1 ?
OR is there a client out there I can use in the mean time until putty updates come through ?
The error when I SSH is:
Key exchange failed.
No compatible key-exchange method. The server supports these methods: diffie-hellman-group16-sha1
Regards
Antony
Simon Tatham
Aug 13, 2021, 2:00:09 PM8/13/21
to
Antony Somerville <antony.s...@gmail.com> wrote:
> How can I update putty.exe to handle diffie-hellman-group16-sha1 ?
It's not very difficult, provided you know the group parameters. All
> How can I update putty.exe to handle diffie-hellman-group16-sha1 ?
the code is in crypto/diffie-hellman.c.
But where does this method come from? The SSH assigned numbers page at
http://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml
lists diffie-hellman-group16-sha512, but not -sha1. Even under the
assumption that it's the same group with a different hash function,
that's going outside the bounds of the standard - there's no
expectation that you should be able to make up new names in that
namespace by re-composing existing names in that way.
What SSH server is supporting this nonstandard name as its only kex
method?
--
for k in [pow(x,37,0x1a1298d262b49c895d47f) for x in [0x50deb914257022de7fff,
0x213558f2215127d5a2d1, 0x90c99e86d08b91218630, 0x109f3d0cfbf640c0beee7,
0xc83e01379a5fbec5fdd1, 0x19d3d70a8d567e388600e, 0x534e2f6e8a4a33155123]]:
print("".join([chr(32+3*((k>>x)&1))for x in range(79)])) # <ana...@pobox.com>
Antony Somerville
Aug 14, 2021, 4:03:35 AM8/14/21
to
Hi Simon,
Thanks for replying. The kex on a Cisco access point with a DH min key size of 4096 and the IOS prompted for this particular cipher.
I remedied for myself by changing that parameter to min size 2048. The IOS then prompted for the DH kex that already is present in putty.
Regards
Antony.
Thanks for replying. The kex on a Cisco access point with a DH min key size of 4096 and the IOS prompted for this particular cipher.
I remedied for myself by changing that parameter to min size 2048. The IOS then prompted for the DH kex that already is present in putty.
Regards
Antony.
Simon Tatham
Aug 14, 2021, 6:43:54 AM8/14/21
to
Antony Somerville <antony.s...@gmail.com> wrote:
> Thanks for replying. The kex on a Cisco access point with a DH min key
> size of 4096 and the IOS prompted for this particular cipher.
Please report a bug to Cisco - they should not be unilaterally
> Thanks for replying. The kex on a Cisco access point with a DH min key
> size of 4096 and the IOS prompted for this particular cipher.
inventing kex names in the IANA-controlled (non-domain-suffixed)
namespace, no matter how obvious they think the meaning of those names
are!
> I remedied for myself by changing that parameter to min size 2048. The
> IOS then prompted for the DH kex that already is present in putty.
--
import hashlib; print((lambda p,q,g,y,r,s,m: (lambda w:(pow(g,int(hashlib.sha1(
m.encode('ascii')).hexdigest(),16)*w%q,p)*pow(y,r*w%q,p)%p)%q)(pow(s,q-2,q))==r
and m)(0xb80b5dacabab6145,0xf70027d345023,0x7643bc4018957897,0x11c2e5d9951130c9
,0xa54d9cbe4e8ab,0x746c50eaa1910, "Simon Tatham <ana...@pobox.com>" ))
0 new messages