Date: Sun, 2 Jun 2002 02:40:13 -0700 (PDT) From: "Crist J. Clark" <crist.clark@attbi.com> To: freebsd-bugs@FreeBSD.org Subject: Re: bin/38643: ssh doesn't fail over from protocol 1 to protocol 2 Message-ID: <200206020940.g529eDT56933@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR bin/38643; it has been noted by GNATS.
From: "Crist J. Clark" <crist.clark@attbi.com>
To: Andrew.P.Lentvorski@www.freebsd.org, "Jr." <bsder@allcaps.org>
Cc: freebsd-gnats-submit@FreeBSD.ORG
Subject: Re: bin/38643: ssh doesn't fail over from protocol 1 to protocol 2
Date: Sat, 1 Jun 2002 18:20:33 -0700
On Mon, May 27, 2002 at 07:33:37PM -0700, Andrew.P.Lentvorski@www.freebsd.org wrote:
[snip]
> >Description:
> When using dsa public keys to log into a remote system, ssh is supposed
> to try using protocol 1 and then use protocol 2 if that fails. In the
> ssh_config file the relevant line is "Protocol 1,2"
This is not how it works. During the initial negotations, server and
client decide which protocol to use. Once they do, it is fixed, you
cannot switch. If they decide to use version 2, and authentication
fails, you are done. You do NOT start over with protocol 1.
--
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200206020940.g529eDT56933>