[Bug 3603] ssh clients can't communicate with server with default cipher when fips is enabled at server end

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Thu Aug 17 19:46:18 AEST 2023


https://bugzilla.mindrot.org/show_bug.cgi?id=3603

--- Comment #4 from Shreenidhi Shedi <sshedi at vmware.com> ---
(In reply to Darren Tucker from comment #3)
> (In reply to Shreenidhi Shedi from comment #2)
> > > Your server is lying about what ciphers it supports
> > 
> > This is the concern I have here. We are not explicitly setting these
> > in sshd_config and using defaults. Why does default cipher list show
> > chacha20 when it is not supporting it?
> 
> Because your modifications to the server are insufficient.  They
> should remove it but don't.

Can you please point out what we are missing? here is our spec file.

https://github.com/vmware/photon/blob/5.0/SPECS/openssh/openssh.spec

Thanks a lot for your quick response and inputs. Like I mentioned
earlier, we are not modifying things much; do we need to enable any
config during configure stage?

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list