[Info-vax] SSH from VMS to 3Par

Dave Froble davef at tsoft-inc.com
Mon Oct 11 14:47:30 EDT 2021 

On 10/11/2021 2:04 PM, Simon Clubley wrote:
> On 2021-10-11, Dave Froble <davef at tsoft-inc.com> wrote:
>> On 10/11/2021 10:45 AM, pcoviello at gmail.com wrote:
>>> On Monday, October 11, 2021 at 9:58:00 AM UTC-4, Scott Dorsey wrote:
>>>> pcov... at gmail.com <pcov... at gmail.com> wrote:
>>>>> Scott if I knew where to find it and was able to edit the sshd_conf file I =
>>>>> would.
>>>>
>>>> It's in /etc/ssh/sshd_config. If you do a man on sshd, it will explain
>>>> how the daemon works and how it is configured. If you do a man on sshd_config
>>>> it will explain the configuration for different encryption algorithms although
>>>> of course they need to be built into the binary for you to enable them.
>>>> I am very surprised the 3par people have not suggested this.
>>>>
>>>> All of this stuff is configurable! You don't have to use the defaults although
>>>> it's often wise to do so.
>>>> --scott
>>>> --
>>>> "C'est un Nagra. C'est suisse, et tres, tres precis."
>>> thanks  though I don't recall having access to that level.
>>>
>>> HPE wanted no part of downgrading the ciphers or a work around for this.
>>>
>
> Given how important this hardware is, that's actually something I'm
> inclined to give HPE the benefit of the doubt when they came to that
> decision.
>
>>
>> Hmmm ...  I was of the opinion the customer was always right?
>>
>
> No. Sometimes the job of a vendor is to protect a customer from themselves
> especially in a litigation crazy country like yours.

Of course "Mr Security" would say something like that.

> What would you expect the response from a chainsaw vendor to be if
> the customer asked for an attachment that would allow them to operate
> a chainsaw in a way that the vendor considered to be dangerous ?

No!  But we're not discussing chain saws.

>> Then there is HPe, "give us your money, but don't expect anything for
>> it".  Perhaps the next time you're purchasing anything, want no part of HPe?
>>
>
> Companies are routinely forced to move away from insecure versions
> of protocols. Giving HPE the benefit of the doubt, this may be no
> different.

Customers need things to work.  What good are they, if they don't do 
what the customer needs?

-- 
David Froble                       Tel: 724-529-0450
Dave Froble Enterprises, Inc.      E-Mail: davef at tsoft-inc.com
DFE Ultralights, Inc.
170 Grimplin Road
Vanderbilt, PA  15486

More information about the Info-vax mailing list