From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 86613 invoked by alias); 16 Sep 2015 00:45:04 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 86601 invoked by uid 89); 16 Sep 2015 00:45:03 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=1.9 required=5.0 tests=AWL,BAYES_20,HK_RANDOM_ENVFROM,HK_RANDOM_FROM,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_DNSWL_LOW autolearn=no version=3.3.2 X-HELO: sneak2.sneakemail.com Received: from sneak2.sneakemail.com (HELO sneak2.sneakemail.com) (38.113.6.65) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with SMTP; Wed, 16 Sep 2015 00:45:02 +0000 Received: (qmail 18752 invoked from network); 16 Sep 2015 00:45:00 -0000 Received: from unknown (HELO localhost.localdomain) (192.168.0.2) by sneak2.sneakemail.com with SMTP; 16 Sep 2015 00:45:00 -0000 Received: from 206.168.13.214 by mail.sneakemail.com with SMTP; 16 Sep 2015 00:45:00 -0000 Received: (sneakemail censored 17576-1442364299-983686 #2); 16 Sep 2015 00:45:00 -0000 Received: (sneakemail censored 17576-1442364299-983686 #1); 16 Sep 2015 00:45:00 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <17576-1442364299-983686@sneakemail.com> Date: Wed, 16 Sep 2015 00:45:00 -0000 From: "John Hein" <3fbmqnhaz4@snkmail.com> To: cygwin@cygwin.com Subject: Re: problem with ~/.ssh/config ? In-Reply-To: References: X-SW-Source: 2015-09/txt/msg00251.txt.bz2 Lee wrote at 17:59 -0400 on Sep 15, 2015: > OpenSSH 7.0 defaults to no support for diffie-hellman-group1-sha1 key > exchange which is a problem with certain devices: > > $ ssh 10.10.3.5 > Unable to negotiate with 10.10.3.5: no matching key exchange method > found. Their offer: diffie-hellman-group1-sha1 > > http://www.openssh.com/legacy.html has two work-arounds: > 1. add "-oKexAlgorithms=+diffie-hellman-group1-sha1" to the ssh > command -- which works for me > 2. add "Host * KexAlgorithms +diffie-hellman-group1-sha1" to > ~/.ssh/config -- which does not work for me > > What's the trick for getting the KexAlgorithms param in ~/.ssh/config to work? > > $ cat ~/.ssh/config . . > # IOS devices running "Remote protocol version 1.99, remote software > version Cisco-1.25" > # only do diffie-hellman-group1-sha1 for key exchange & OpenSSH 7.0 > has it disabled by default. > # re-enable & add to the end of the list: > Host * KexAlgorithms +diffie-hellman-group1-sha1 . . The trick is a newline. Host entry on one line, config settings on lines below it. Not a cygwin question. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple