Re: sshd fatal - no matching cipher found -- MIDRANGE-L

Good News Everybody!

The new search engine is LIVE!

Please report any problems to david (at) midrange.com.

Hello Steve,

Am 19.02.2020 um 23:30 schrieb Steve Richter <stephenrichter@xxxxxxxxx>:

blocking SSH means terminal access to PASE is blocked over the web?

Yes. But since Scp and Sftp all utilize Ssh to establish a secure communication channel, also these Protocols no longer work.

what I do not understand is, if SSH only works using public/private key
pairs, what is the risk of having your SSH port open to internet access?

If a thoughtful admin changed the default sshd_config from accepting passwords to only accept Key Auth, I have no objections. Thanks for pointing out.

*But*, there have been remotely exploitable Bugs in Openssh and there are more probably still lurking in the code. Your mileage may vary. I'll take down my tinfoil hat now, if you allow? ;-)

The nasty messages you observed will continue to show up, though. If there's no IBM i special way to suppress Sshd warning/error messages creating messages to qsysopr, that is.

:wq! PoC

PGP-Key: DDD3 4ABF 6413 38DE - https://www.pocnet.net/poc-key.asc

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.