Hello,
(Apparently bug-lsh(a)gnu.org does to the bit bucket.)
OpenSSH 6.7 removed all CBC, among others, from its default cipher
suites (see <http://www.openssh.com/txt/release-6.7>.)
As a consequence, the SSH client from lsh 2.1 cannot connect to a recent
OpenSSH server by default. Instead, one needs to pass ‘-c aes256-ctr’,
which is one of the few ciphers in common.
I think it would make sense to make a new lsh release that would at
least change the default set of cipher suites to follow what OpenSSH
did. WDYT?
Thanks,
Ludo’.