VanDyke Software Forums

VanDyke Software Forums (https://forums.vandyke.com/index.php)
-   Secure Shell (https://forums.vandyke.com/forumdisplay.php?f=15)
-   -   FAQ: What are the key exchange algorithms supported in VShell/Windows? (https://forums.vandyke.com/showthread.php?t=13876)

bgagnon 08-16-2019 04:10 PM

FAQ: What are the key exchange algorithms supported in VShell/Windows?
 
1 Attachment(s)
As of the current release, VShell version 4.4.3, these are the key exchange algorithms supported (with the version when first implemented):
curve25519-sha256 (v4.4)
ecdh-sha2-nistp521 (v4.1)
ecdh-sha2-nistp384 (v4.1)
ecdh-sha2-nistp256 (v4.1)
diffie-hellman-group-exchange-sha256 (v4.1)
Kerberos (v3.5)
Kerberos (Group Exchange) (v3.5)
diffie-hellman-group14 (v2.3)
diffie-hellman-group (v1.x)
[diffie-hellman] (v1.x, but disabled since v4.1)

https://forums.vandyke.com/attachmen...achmentid=1742

Note that while diffie-hellman is still available, it was disabled as of v4.1 due to well-documented flaws in the algorithm associated with news surrounding the Logjam vulnerability. Many other SSH servers and clients have turned off default support for the diffie-hellman key exchange algorithm.

Changes in VShell 4.1.1 (Official) -- July 14, 2015
-----------------------------------------------------------------------------------
Changes:
  • In light of a potential vulnerability with SSH key exchange, similar to the TLS Logjam vulnerability, the diffie-hellman group1 key-exchange algorithm is no longer enabled by default and all 1024 bit primes have been removed from VShell's primes.txt file.


All times are GMT -6. The time now is 01:11 PM.