login about faq

Hi, We have SSH v6.3 installed. there is a setting on the SSH server in the connection and encryption tab where we set the encryption type, MACs and KEXs. What is this KEX for? we encounter error connecting to the server when this was left as default. once we unselect all the KEXs our client can connect to tectia server. the client is openssh. is there any impact to security if we do not select KEXs?

asked Sep 24 '14 at 07:32

sgpolarbear's gravatar image

sgpolarbear
8555


Hi,

The listed KEXs are the algorithms allowed by the server for key exchange.

Which exact version of Tectia Server are you using? There was an issue with the default KEXs in the Tectia Server Configuration GUI, which was fixed in the 6.3.11 release (August 2014), so if you're using an earlier 6.3.x version, it's possible that you are hitting that bug.

You mentioned you're using an OpenSSH client. Could you please connect with the -vv option (verbose), and paste the output here? It should contain the KEXs that are actually being used.

If you unselected all the KEXs and were able to connect after that, it means that the server was using the default KEXs, so there was no security impact.

link

answered Sep 24 '14 at 16:29

SSH%20KB's gravatar image

SSH KB ♦
509249246237

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×1

Asked: Sep 24 '14 at 07:32

Seen: 3,773 times

Last updated: Sep 24 '14 at 16:29

Related questions

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.