[Bug 3603] ssh clients can't communicate with server with default cipher when fips is enabled at server end

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Thu Aug 17 19:46:18 AEST 2023


--- Comment #4 from Shreenidhi Shedi <sshedi at vmware.com> ---
(In reply to Darren Tucker from comment #3)
> (In reply to Shreenidhi Shedi from comment #2)
> > > Your server is lying about what ciphers it supports
> > 
> > This is the concern I have here. We are not explicitly setting these
> > in sshd_config and using defaults. Why does default cipher list show
> > chacha20 when it is not supporting it?
> Because your modifications to the server are insufficient.  They
> should remove it but don't.

Can you please point out what we are missing? here is our spec file.


Thanks a lot for your quick response and inputs. Like I mentioned
earlier, we are not modifying things much; do we need to enable any
config during configure stage?

You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

More information about the openssh-bugs mailing list