Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

If God had a beard, he'd be a UNIX programmer.

devel / comp.security.ssh / Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1

SubjectAuthor
* Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1Antony Somerville
`* Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1Simon Tatham
 `* Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1Antony Somerville
  `- Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1Simon Tatham

1
Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1

<5d730762-a3d7-4a0d-a920-b16e4e56c7ben@googlegroups.com>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=241&group=comp.security.ssh#241

  copy link   Newsgroups: comp.security.ssh
X-Received: by 2002:a05:6214:c6f:: with SMTP id t15mr623305qvj.52.1628824316880;
Thu, 12 Aug 2021 20:11:56 -0700 (PDT)
X-Received: by 2002:a9d:74d4:: with SMTP id a20mr386634otl.211.1628824316554;
Thu, 12 Aug 2021 20:11:56 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder8.news.weretis.net!proxad.net!feeder1-2.proxad.net!209.85.160.216.MISMATCH!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.security.ssh
Date: Thu, 12 Aug 2021 20:11:56 -0700 (PDT)
Injection-Info: google-groups.googlegroups.com; posting-host=203.34.228.49; posting-account=_zUo5woAAAA_DJW5-D9qY9deDeTm7wvv
NNTP-Posting-Host: 203.34.228.49
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <5d730762-a3d7-4a0d-a920-b16e4e56c7ben@googlegroups.com>
Subject: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1
From: antony.s...@gmail.com (Antony Somerville)
Injection-Date: Fri, 13 Aug 2021 03:11:56 +0000
Content-Type: text/plain; charset="UTF-8"
 by: Antony Somerville - Fri, 13 Aug 2021 03:11 UTC

Hello,

I have run into an isue where putty key exchange is unable to agree with a device I only have ssh access to.

How can I update putty.exe to handle diffie-hellman-group16-sha1 ?

OR is there a client out there I can use in the mean time until putty updates come through ?

The error when I SSH is:
Key exchange failed.
No compatible key-exchange method. The server supports these methods: diffie-hellman-group16-sha1

Regards
Antony

Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1

<rXe*jZAry@news.chiark.greenend.org.uk>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=242&group=comp.security.ssh#242

  copy link   Newsgroups: comp.security.ssh
Path: i2pn2.org!i2pn.org!usenet.goja.nl.eu.org!nntp.terraraq.uk!nntp-feed.chiark.greenend.org.uk!ewrotcd!.POSTED!not-for-mail
From: ana...@pobox.com (Simon Tatham)
Newsgroups: comp.security.ssh
Subject: Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1
Date: 13 Aug 2021 19:00:05 +0100 (BST)
Lines: 21
Message-ID: <rXe*jZAry@news.chiark.greenend.org.uk>
References: <5d730762-a3d7-4a0d-a920-b16e4e56c7ben@googlegroups.com>
NNTP-Posting-Host: chiark.greenend.org.uk
X-Trace: chiark.greenend.org.uk 1628877607 4885 212.13.197.229 (13 Aug 2021 18:00:07 GMT)
X-Complaints-To: abuse@chiark.greenend.org.uk
NNTP-Posting-Date: Fri, 13 Aug 2021 18:00:07 +0000 (UTC)
X-Newsreader: trn 4.0-test77 (Sep 1, 2010)
Originator: simon@tunnel.thyestes.tartarus.org ([172.31.80.4])
 by: Simon Tatham - Fri, 13 Aug 2021 18:00 UTC

Antony Somerville <antony.somerville@gmail.com> wrote:
> How can I update putty.exe to handle diffie-hellman-group16-sha1 ?

It's not very difficult, provided you know the group parameters. All
the code is in crypto/diffie-hellman.c.

But where does this method come from? The SSH assigned numbers page at
http://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml
lists diffie-hellman-group16-sha512, but not -sha1. Even under the
assumption that it's the same group with a different hash function,
that's going outside the bounds of the standard - there's no
expectation that you should be able to make up new names in that
namespace by re-composing existing names in that way.

What SSH server is supporting this nonstandard name as its only kex
method?
--
for k in [pow(x,37,0x1a1298d262b49c895d47f) for x in [0x50deb914257022de7fff,
0x213558f2215127d5a2d1, 0x90c99e86d08b91218630, 0x109f3d0cfbf640c0beee7,
0xc83e01379a5fbec5fdd1, 0x19d3d70a8d567e388600e, 0x534e2f6e8a4a33155123]]:
print("".join([chr(32+3*((k>>x)&1))for x in range(79)])) # <anakin@pobox.com>

Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1

<85ca4a57-3144-4974-9328-f5c44c73b704n@googlegroups.com>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=243&group=comp.security.ssh#243

  copy link   Newsgroups: comp.security.ssh
X-Received: by 2002:a05:620a:1999:: with SMTP id bm25mr6303421qkb.329.1628928214851;
Sat, 14 Aug 2021 01:03:34 -0700 (PDT)
X-Received: by 2002:a05:6830:88:: with SMTP id a8mr5172771oto.233.1628928214596;
Sat, 14 Aug 2021 01:03:34 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder8.news.weretis.net!proxad.net!feeder1-2.proxad.net!209.85.160.216.MISMATCH!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.security.ssh
Date: Sat, 14 Aug 2021 01:03:34 -0700 (PDT)
In-Reply-To: <rXe*jZAry@news.chiark.greenend.org.uk>
Injection-Info: google-groups.googlegroups.com; posting-host=180.150.111.1; posting-account=_zUo5woAAAA_DJW5-D9qY9deDeTm7wvv
NNTP-Posting-Host: 180.150.111.1
References: <5d730762-a3d7-4a0d-a920-b16e4e56c7ben@googlegroups.com> <rXe*jZAry@news.chiark.greenend.org.uk>
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <85ca4a57-3144-4974-9328-f5c44c73b704n@googlegroups.com>
Subject: Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1
From: antony.s...@gmail.com (Antony Somerville)
Injection-Date: Sat, 14 Aug 2021 08:03:34 +0000
Content-Type: text/plain; charset="UTF-8"
 by: Antony Somerville - Sat, 14 Aug 2021 08:03 UTC

Hi Simon,

Thanks for replying. The kex on a Cisco access point with a DH min key size of 4096 and the IOS prompted for this particular cipher.

I remedied for myself by changing that parameter to min size 2048. The IOS then prompted for the DH kex that already is present in putty.

Regards
Antony.

> But where does this method come from? The SSH assigned numbers page at
> http://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml
> lists diffie-hellman-group16-sha512, but not -sha1. Even under the
> assumption that it's the same group with a different hash function,
> that's going outside the bounds of the standard - there's no
> expectation that you should be able to make up new names in that
> namespace by re-composing existing names in that way.
>
> What SSH server is supporting this nonstandard name as its only kex
> method?

Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1

<V+C*zEEry@news.chiark.greenend.org.uk>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=244&group=comp.security.ssh#244

  copy link   Newsgroups: comp.security.ssh
Path: i2pn2.org!i2pn.org!aioe.org!nntp.terraraq.uk!nntp-feed.chiark.greenend.org.uk!ewrotcd!.POSTED!not-for-mail
From: ana...@pobox.com (Simon Tatham)
Newsgroups: comp.security.ssh
Subject: Re: Putty.exe v0.76 key exchange support diffie-hellman-group16-sha1
Date: 14 Aug 2021 11:43:51 +0100 (BST)
Lines: 18
Message-ID: <V+C*zEEry@news.chiark.greenend.org.uk>
References: <5d730762-a3d7-4a0d-a920-b16e4e56c7ben@googlegroups.com> <rXe*jZAry@news.chiark.greenend.org.uk> <85ca4a57-3144-4974-9328-f5c44c73b704n@googlegroups.com>
NNTP-Posting-Host: chiark.greenend.org.uk
X-Trace: chiark.greenend.org.uk 1628937833 29676 212.13.197.229 (14 Aug 2021 10:43:53 GMT)
X-Complaints-To: abuse@chiark.greenend.org.uk
NNTP-Posting-Date: Sat, 14 Aug 2021 10:43:53 +0000 (UTC)
X-Newsreader: trn 4.0-test77 (Sep 1, 2010)
Originator: simon@tunnel.thyestes.tartarus.org ([172.31.80.4])
 by: Simon Tatham - Sat, 14 Aug 2021 10:43 UTC

Antony Somerville <antony.somerville@gmail.com> wrote:
> Thanks for replying. The kex on a Cisco access point with a DH min key
> size of 4096 and the IOS prompted for this particular cipher.

Please report a bug to Cisco - they should not be unilaterally
inventing kex names in the IANA-controlled (non-domain-suffixed)
namespace, no matter how obvious they think the meaning of those names
are!

> I remedied for myself by changing that parameter to min size 2048. The
> IOS then prompted for the DH kex that already is present in putty.

That's good to hear.
--
import hashlib; print((lambda p,q,g,y,r,s,m: (lambda w:(pow(g,int(hashlib.sha1(
m.encode('ascii')).hexdigest(),16)*w%q,p)*pow(y,r*w%q,p)%p)%q)(pow(s,q-2,q))==r
and m)(0xb80b5dacabab6145,0xf70027d345023,0x7643bc4018957897,0x11c2e5d9951130c9
,0xa54d9cbe4e8ab,0x746c50eaa1910, "Simon Tatham <anakin@pobox.com>" ))

1
server_pubkey.txt

rocksolid light 0.9.8
clearnet tor