enabling "none" cipher
Darren Tucker
dtucker at dtucker.net
Fri Dec 19 18:57:09 AEDT 2025
On Fri, 19 Dec 2025 at 18:17, Nacho via openssh-unix-dev <
openssh-unix-dev at mindrot.org> wrote:
> [...]
> Is it possible that there is no native support for "none" cipher in
> OpenSSH and
> this is just implemented by third party patches?
>
Stock OpenSSH does not support the "none" cipher. It's counter to the
project's goals of "putting an end to unencrypted logins" and "keeping your
communiques secret", and it's also the kind of thing that has been used for
protocol downgrade attacks in the past.
As for why your patch doesn't work, there hasn't been any change I'm aware
of that would break it, but if you show us exactly which patch you're
trying to use someone here might be able to help you.
--
Darren Tucker (dtucker at dtucker.net)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860 37F4 9357 ECEF 11EA A6FA
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list