Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Disable OpenSSH Protocol version 1

from [wc wong] Network Security [Permanent Link]
Subject: Re: Disable OpenSSH Protocol version 1
Date: Thu, 21 Feb 2008 15:32:34 -0800 (PST) 
Thanks Celestino.

Please read my inline comments.

John
--- Jose Celestino <japc@co.sapo.pt> wrote:


Words by wc wong [Thu, Feb 21, 2008 at 01:18:12PM
-0800]:

Hi,

I understand that we can disable SSH Protocol

version

1 in sshd_config file by adding the line "Protocol

2".

This merely rejects incoming ssh session using

Version

1.

If I add the line "Protocol 2" in sshd_config of
server1 and "ssh -1 user@server1" from a remote
server, then I got the response "Protocol major
versions differ: 1 vs. 2". This is expected as
incoming ssh session using version 1 is rejected by
the "Protocol 2" line in sshd_config of server1.


However, when I tried to disable outgoing ssh

session

from using Version 1 by adding the line "Protocol

2"

in ssh_config file, it did not work.



Could you give a little detail on "it did not work"?

For outgoing ssh session, I added the line "Protocol
2" in the ssh_config file of server1 trying to disable
ssh session using version 1 from sending out server1.

From the server1, I tried "ssh -1 user@hostname" to

force it to ssh to a remote server hostname using
version 1. The ssh session proceeded as normal with
version 1. Hence, I could not use the same way to
configure ssh_config to disable outgoing ssh session
using version 1.




Is there any way
to disable outgoing ssh session from using Version

1?




-2 on command line forces version 2 only.

I want to disable version 1 by configuration instead
of using command line option.


-v may also be of use to do some debugging (try
-vvv)

-- 
Jose Celestino


----------------------------------------------------------------

http://www.msversus.org/     ;
http://techp.org/petition/show/1
http://www.vinc17.org/noswpat.en.html


----------------------------------------------------------------

"If you would have your slaves remain docile, teach
them hymns."
    -- Ed Weathers ("The Empty Box")





      
____________________________________________________________________________________
Looking for last minute shopping deals?  
Find them fast with Yahoo! Search.  
http://tools.search.yahoo.com/newsearch/category.php?category=shopping
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Disable OpenSSH Protocol version 1, Jeremy C. Reed
Next by Date:  Re: Disable OpenSSH Protocol version 1, Jose Celestino
Previous by Thread:  Re: Disable OpenSSH Protocol version 1, Jose Celestino
Next by Thread:  Re: Disable OpenSSH Protocol version 1, Darren Tucker
Indexes:  [Date] [Thread] [Top] [All Lists]