[X2Go-User] ssh kex error

is at k4ts.net is at k4ts.net
Mon Oct 19 17:37:59 CEST 2015


Am 19.10.2015 17:06, schrieb Robert Dinse:
> the new version of openssh disabled certain insecure
> ciphers...

Version7 is what you mean. I use 6.9 on both client and server.

>  you can add
> the following line to your /etc/ssh/sshd_config  manually enable the
> insecure old ciphers:
> 
> KexAlgorithms
> curve25519-sha256 at libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1

Adding these ciphers doesn't help - same algo error,

Thats wired coz I can ssh to the server without any issues.



> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-
>  Eskimo North Linux Friendly Internet Access, Shell Accounts, and 
> Hosting.
>    Knowledgeable human assistance, not telephone trees or script 
> readers.
>  See our web site: http://www.eskimo.com/ (206) 812-0051 or (800) 
> 246-6874.
> 
> On Mon, 19 Oct 2015, is at k4ts.net wrote:
> 
>> Date: Mon, 19 Oct 2015 15:12:43 +0200
>> From: is at k4ts.net
>> To: x2go-user at lists.x2go.org
>> Subject: [X2Go-User] ssh kex error
>> 
>> hi, i'm not able to connect
>> to my new hardened gentoo server using x2go.
>> 
>> No matter which key type i select for the connection,
>> the client (v. 4.0.5.0) terminates with the following:
>> 
>> kex error : no match for method server host key algo:
>> server [ssh-rsa,ssh-ed25519], client [ecdsa-sha2-nistp256]
>> 
>> I have rsa and ed25519 keys on my client and server.
>> 
>> sshing from the shell works like always. log is attached.
>> 
>> do you have an idea, whats might wrong?
>> 
>> thx,
>> k4t
>> 
>> k4tfish at e10 ~ $ ssh k4tfish at host
>> OpenSSH_6.9p1-hpn14v5, OpenSSL 1.0.2d 9 Jul 2015
>> debug1: Reading configuration data /etc/ssh/ssh_config
>> debug1: Connecting to host.net port 51822.
>> debug1: Connection established.
>> debug1: identity file /home/k4tfish/.ssh/id_rsa type 1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_rsa-cert type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_dsa type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_dsa-cert type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_ecdsa type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_ecdsa-cert type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_ed25519 type -1
>> debug1: key_load_public: No such file or directory
>> debug1: identity file /home/k4tfish/.ssh/id_ed25519-cert type -1
>> debug1: Enabling compatibility mode for protocol 2.0
>> debug1: Local version string SSH-2.0-OpenSSH_6.9p1-hpn14v5
>> debug1: Remote protocol version 2.0, remote software version 
>> OpenSSH_6.9p1-hpn14v5
>> debug1: match: OpenSSH_6.9p1-hpn14v5 pat OpenSSH* compat 0x04000000
>> debug1: Authenticating to host...net:51822 as 'k4tfish'
>> debug1: SSH2_MSG_KEXINIT sent
>> debug1: SSH2_MSG_KEXINIT received
>> debug1: AUTH STATE IS 0
>> debug1: REQUESTED ENC.NAME is 'chacha20-poly1305 at openssh.com'
>> debug1: kex: server->client chacha20-poly1305 at openssh.com <implicit> 
>> none
>> debug1: REQUESTED ENC.NAME is 'chacha20-poly1305 at openssh.com'
>> debug1: kex: client->server chacha20-poly1305 at openssh.com <implicit> 
>> none
>> debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
>> debug1: Server host key: ssh-ed25519 SHA256:xyz
>> debug1: Host '[host.net]:51822' is known and matches the ED25519 host 
>> key.
>> debug1: Found key in /home/k4tfish/.ssh/known_hosts:203
>> debug1: SSH2_MSG_NEWKEYS sent
>> debug1: expecting SSH2_MSG_NEWKEYS
>> debug1: SSH2_MSG_NEWKEYS received
>> debug1: Roaming not allowed by server
>> debug1: SSH2_MSG_SERVICE_REQUEST sent
>> debug1: SSH2_MSG_SERVICE_ACCEPT received
>> debug1: Authentications that can continue: 
>> publickey,password,keyboard-interactive
>> debug1: Next authentication method: publickey
>> debug1: Offering RSA public key: /home/k4tfish/.ssh/id_rsa
>> debug1: Server accepts key: pkalg ssh-rsa blen 279
>> debug1: Authentication succeeded (publickey).
>> Authenticated to host ([123.123.456.7]:51822).
>> debug1: Final hpn_buffer_size = 2097152
>> debug1: HPN Disabled: 0, HPN Buffer Size: 2097152
>> debug1: channel 0: new [client-session]
>> debug1: Enabled Dynamic Window Scaling
>> debug1: Requesting no-more-sessions at openssh.com
>> debug1: Entering interactive session.
>> debug1: client_input_global_request: rtype hostkeys-00 at openssh.com 
>> want_reply 0
>> debug1: Sending environment.
>> debug1: Sending env LC_COLLATE = C
>> debug1: Sending env LANG = en_US.utf8
>> 
>> _______________________________________________
>> x2go-user mailing list
>> x2go-user at lists.x2go.org
>> http://lists.x2go.org/listinfo/x2go-user
>> 



More information about the x2go-user mailing list