On 11/23/21 7:50 AM, Christian Holzapfel wrote:
> I'm aware of the security issues of these old SSH implementations,
> and I consider it for inhouse remote tinkering only - definitely not
> a sensitive application.
Do you /need/ to SSH /to/ AIX running on the RS/6000? Or could you SSH
to /something/ and have it initiate an unencrypted connection to AIX?
If the latter will work for you, consider something like the following:
# ssh -W ${AIX_IP}:${AIX_PORT} ${SSH_BASTION}
That will ssh to the SSH_BASTION and establish a TCP connection to
AIX_PORT on AIX_IP. Thus your /client/ computer initiates an SSH
connection to the SSH_BASTION and subsequently sees the connection
similar as if it had done a telnet all the way to the AIX machine. I
think this is a decent intermediate bridge solution that means a modern
client is only using standard SSH connections.
--
Grant. . . .
unix || die