Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  nodelist  faq  login

Real Programmers don't eat quiche. They eat Twinkies and Szechwan food.


computers / comp.security.ssh / Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console

SubjectAuthor
* Using PuTTY 0.70 to connect to HP Integrity rx2660 MP consoledthittner
+- Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP consoledthittner
`- Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP consolebje

1
Subject: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
From: dthitt...@gmail.com
Newsgroups: comp.security.ssh
Date: Tue, 23 Jun 2020 18:36 UTC
X-Received: by 2002:a05:620a:2290:: with SMTP id o16mr22292909qkh.205.1592937365296;
Tue, 23 Jun 2020 11:36:05 -0700 (PDT)
X-Received: by 2002:a05:620a:12ef:: with SMTP id f15mr20196719qkl.445.1592937365117;
Tue, 23 Jun 2020 11:36:05 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder7.news.weretis.net!proxad.net!feeder1-2.proxad.net!209.85.160.216.MISMATCH!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.security.ssh
Date: Tue, 23 Jun 2020 11:36:04 -0700 (PDT)
Complaints-To: groups-abuse@google.com
Injection-Info: google-groups.googlegroups.com; posting-host=134.223.230.151; posting-account=kZBiTgoAAADmAc60TO9Jm9WVg1drxCZ1
NNTP-Posting-Host: 134.223.230.151
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <afe4b738-5eb2-49fd-aff5-a3bdcb202eceo@googlegroups.com>
Subject: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
From: dthitt...@gmail.com
Injection-Date: Tue, 23 Jun 2020 18:36:05 +0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
View all headers
Using PuTTY 0.70, when I try to connect to the HP rx2660 MP (remote control) port, I get a "Network error: software caused connection abort" message.

The server has the latest MP firmware from 2011, and is no longer supported by HP, so there's no possibility of getting a more up-to-date SSH server.

I also know that I can successfully connect to the MP port from an Ubuntu system using the following SSH -o parameters to modify the default SSH connection:

Kex: diffie-hellman-group1-sha1
MACs: hmac-md5,hmac-sha1
Ciphers: aes-128-cbc,3des-cbc
HostKeyAlgorithms: ssh-rsa,ssh-des

I see diffie-hellman-group1-sha1 on the KEX tab, and can move it to the top.. I see 3DES and AES on the Ciphers tab, and can move either to the top. I've also seen on the web that hmac-sha1 may be the actual required MAC. But I don't see where I can change/force the MAC and HostKeyAlgorithm.

How can I force PuTTY to use these modified SSH parameters to achieve a successful connection?


Subject: Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
From: dthitt...@gmail.com
Newsgroups: comp.security.ssh
Date: Wed, 24 Jun 2020 18:00 UTC
References: 1
X-Received: by 2002:a05:6214:922:: with SMTP id dk2mr32796037qvb.87.1593021632925;
Wed, 24 Jun 2020 11:00:32 -0700 (PDT)
X-Received: by 2002:ad4:4526:: with SMTP id l6mr8172289qvu.16.1593021632719;
Wed, 24 Jun 2020 11:00:32 -0700 (PDT)
Path: i2pn2.org!i2pn.org!aioe.org!peer02.ams4!peer.am4.highwinds-media.com!peer03.iad!feed-me.highwinds-media.com!news.highwinds-media.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.security.ssh
Date: Wed, 24 Jun 2020 11:00:32 -0700 (PDT)
In-Reply-To: <afe4b738-5eb2-49fd-aff5-a3bdcb202eceo@googlegroups.com>
Complaints-To: groups-abuse@google.com
Injection-Info: google-groups.googlegroups.com; posting-host=134.223.230.152; posting-account=kZBiTgoAAADmAc60TO9Jm9WVg1drxCZ1
NNTP-Posting-Host: 134.223.230.152
References: <afe4b738-5eb2-49fd-aff5-a3bdcb202eceo@googlegroups.com>
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <7b83af55-d707-46bf-af4a-03f0bbaeb81ao@googlegroups.com>
Subject: Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
From: dthitt...@gmail.com
Injection-Date: Wed, 24 Jun 2020 18:00:32 +0000
Content-Type: text/plain; charset="UTF-8"
X-Received-Bytes: 1920
X-Received-Body-CRC: 4036686873
View all headers
On Tuesday, June 23, 2020 at 2:36:06 PM UTC-4, dthi...@gmail.com wrote:
Using PuTTY 0.70, when I try to connect to the HP rx2660 MP (remote control) port, I get a "Network error: software caused connection abort" message.

The problem with PuTTY 0.70 occurs using both the Linux(Ubuntu) and Windows versions.

The problem persists in PuTTY version 0.73.  When I use [on Windows 10] 'plink -v' username@system to connect, I get a better error message: 'Remote side sent disconnect message type 11 (by application): " Client Disconnect "'.

Attachmate Reflection 2014 will cheerfully make this connection.

Windows 10 built-in SSH will not make the connection, stating that there is no common protocol.


Subject: Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
From: bje...@ripco.com
Newsgroups: comp.security.ssh
Organization: Ripco Communications Inc.
Date: Thu, 25 Jun 2020 11:07 UTC
References: 1
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!tncsrv06.tnetconsulting.net!news.ripco.com!.POSTED.shell3!not-for-mail
From: bje...@ripco.com
Newsgroups: comp.security.ssh
Subject: Re: Using PuTTY 0.70 to connect to HP Integrity rx2660 MP console
Date: Thu, 25 Jun 2020 11:07:18 -0000 (UTC)
Organization: Ripco Communications Inc.
Message-ID: <rd20h6$1pk$1@remote5bge0.ripco.com>
References: <afe4b738-5eb2-49fd-aff5-a3bdcb202eceo@googlegroups.com>
Injection-Date: Thu, 25 Jun 2020 11:07:18 -0000 (UTC)
Injection-Info: remote5bge0.ripco.com; posting-host="shell3:66.251.253.170";
logging-data="1844"; mail-complaints-to="usenet@ripco.com"
User-Agent: tin/2.4.2-20171224 ("Lochhead") (UNIX) (SunOS/5.10 (i86pc))
View all headers
dthittner@gmail.com wrote:

How can I force PuTTY to use these modified SSH parameters to achieve a
successful connection?


I don't use windows or putty but putty (from the command line, don't know
about the gui) has a -1 argument which forces it to the old ssh.v1, which
might be the only ssh version that service monitor might understand.

I ran into this because we (ripco) still has a shell client available and
one of the sshd upgrades got rid of the v1 compatability and some of the
users were using an ancient version of putty. Getting them to upgrade was
a pain in the ass enough but then some of them were also using another
system that were stuck at v1 and the newer putty would give similar error
messages and not connect.

So they used -1 to connect to those, without it to us.

Just passing it along.

-bruce
bje@ripco.com


1
rocksolid light 0.7.2
clearneti2ptor