Date: Wed, 23 Oct 2002 09:16:43 -0700 From: David Schultz <dschultz@uclink.Berkeley.EDU> To: Steven Ames <steve@virtual-voodoo.com> Cc: Lucky Green <shamrock@cypherpunks.to>, freebsd-current@FreeBSD.ORG Subject: Re: Request: remove ssh1 fallback Message-ID: <20021023161643.GA7813@HAL9000.homeunix.com> In-Reply-To: <004401c27aad$740a5400$33d90c42@officescape.net> References: <007501c27a5c$27203fc0$6501a8c0@VAIO650> <20021023155753.GB7503@HAL9000.homeunix.com> <004401c27aad$740a5400$33d90c42@officescape.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Steven Ames <steve@virtual-voodoo.com>: > > Making SSH 2 the default is one thing. Removing SSH 1 as a > > fallback altogether is going to break compatibility with other > > systems like you'd never believe. For example, I regularly need > > to SSH into Solaris boxen running SSH 1. These machines aren't > > secure anyway, and since there's nothing I can do about it, I > > don't want any surprises when I upgrade. > > I think he was suggesting removing it from the sshd server, not > the client. You can always specify the protocol on the command > line with the client even if it didn't fall back... and again he's > suggesting it for the default configuration, you can always change > the configuration. I'm not necessarily for this change I just want > to be sure what change is being suggested :) In either case, you break compatibility. Say I wanted to SSH from those Solaris boxen to my home machine, for example. (I don't, but that's not the point.) If my SSH server didn't have the SSH 1 fallback, there's nothing I could do from the command line to allow me to log in. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021023161643.GA7813>