Hello,
(Apparently bug-lsh@gnu.org does to the bit bucket.)
OpenSSH 6.7 removed all CBC, among others, from its default cipher suites (see http://www.openssh.com/txt/release-6.7.)
As a consequence, the SSH client from lsh 2.1 cannot connect to a recent OpenSSH server by default. Instead, one needs to pass ‘-c aes256-ctr’, which is one of the few ciphers in common.
I think it would make sense to make a new lsh release that would at least change the default set of cipher suites to follow what OpenSSH did. WDYT?
Thanks, Ludo’.
ludo@gnu.org (Ludovic Courtès) writes:
I checked on fencepost and it goes to Niels directly. What about making it an alias for lsh-bugs@lists.lysator.liu.se?
It used to be such an alias, but I changed that after I changed the posting policy of the list to members only (as a desperate anti-spam measure). And it seems a bit unfriendly to have bug-lsh@gnu.org go to a members-only list.
Regards, /Niels
nisse@lysator.liu.se (Niels Möller) skribis:
ludo@gnu.org (Ludovic Courtès) writes:
I checked on fencepost and it goes to Niels directly. What about making it an alias for lsh-bugs@lists.lysator.liu.se?
It used to be such an alias, but I changed that after I changed the posting policy of the list to members only (as a desperate anti-spam measure). And it seems a bit unfriendly to have bug-lsh@gnu.org go to a members-only list.
OK, I don’t know what’s best then.
Ludo’.
-
ludo@gnu.org -
nisse@lysator.liu.se