[Info-vax] problem conncting via ssh to Fedora-linux-server FC22

[lists at openmailbox.org]

On Tue, 02 Jun 2015 13:26:14 +0200
Joukj via Info-vax <info-vax at rbnsn.com> wrote:

> Dennis Boone wrote:
> >  > I recently upgraded one of my Fedora-linux servers from FC21 to
> >  > FC22. After the upgrade I was not able to connect via ssh from my
> >  > OpenVMS machines to this server (see log for connections to FC22
> >  > (failed) and FC21 (succeeded) below.) Connection from any of my
> >  > linux servers is still possible.
> >  > It seems that something goes wrong when negotiating the ciphers.
> > 
> > From the OpenSSH 6.7 release notes:

> amazing, that the even on a linux subject the OpenVMS community is much 
> more helping than the linux community (I asked the same on a Fedora 
> forum, but got 0 answers!!!)

They would desperately like to answer you but they can no longer SSH into
their Fedora boxes in order to be able to do so.

Anyway, SSH is not a Linux subject. SSH is a separate project spun off from
OpenBSD. OpenBSD has the native version and the "portable" version runs on
almost everything else worth running on.

> However, when you do not "own" the ssh-server this is not a solution. 
> How difficult would it be to build the OpenSSH client on top of the 
> TCP/IP stack of OpenVMS?

The issue is not necessarily a server-side issue. If your client is updated
you can connect despite the changes in usable ciphers and modes.

That said, I didn't like this change either. Changes that break
compatability and lock people out of their servers (happened to me a couple
months ago since I updated an OpenBSD box) should not happen, changelog or
no changelog.

This kind of thing should have been a README issue and possibly a warning
in the code for a few releases before it actually stops working. I don't
think it was handled very well.

-- 
Please DO NOT COPY ME on mailing list replies. I read the mailing list.
RSA 4096 fingerprint 7940 3F02 16D3 AFEE F2F8  ACAA 557C 4B36 98E4 4D49