[Qt-creator] OpenSSH 6.7 stopped supping algorithms using cbc out of the box, breaking remotelinux plugin / ssh library
Benjamin Zeller
benjamin.zeller at canonical.com
Wed Nov 5 13:29:56 CET 2014
Hi all,
I just hit the problem that from the 6.7 release on OpenSSH does not
support algorithms using cbc by default anymore, because they are
considered unsafe.
This is a problem because the ssh implementation
used in QtCreator just supports: "3des-cbc" and "aes128-cbc".
While it is possible to re enable the unsafe algorithms in the sshd
config file,
it means that no out of the box configurations will work, also enabling
algorithms
considered unsafe is probably not the way to go.
This can be seen in the release logs:
http://www.openssh.com/txt/release-6.7 first element in the
"Potentially-incompatible changes"
<quote>
* sshd(8): The default set of ciphers and MACs has been altered
to remove unsafe algorithms.
In particular, CBC ciphers and arcfour* are disabled by default.
</quote>
Is there already any work going on in switching to a different cypher,
like described in that rfc "http://www.ietf.org/rfc/rfc4344.txt" ?
Regards,
Benjamin
More information about the Qt-creator
mailing list