[mdlug-discuss] [Discuss] sftp object code coordination

[gib at juno.com]

So, if you have an older version it just negotiates to the older version?  I would think that would cause some concern with keeping a good encryption practice.

-- Steven M Campbell <mug at scampbell.net> wrote:
It's negotiated during the ssh handshakes.  I use ssh/sftp for many 
secure connections with many customers without issue.   The biggest 
trick I see is to ensure that, when you use pre-shared (authorized) keys 
that they are properly commented so you know who they were.   I just 
won't install one that isn't to my liking.

Note I have seen some ancient Cisco PIX firewalls required that the 
initiator specify protocol 1 and single des encryption and 512 byte keys 
but I would fault that PIX for being ancient and wanting me to use 
ridiculous algorithms by today's standards.  My ssh client could 
negotiate that but I'm rather glad it complains at that point :)


gib at juno.com wrote:
>
>  
>
> Okay, so how do people in different areas with different environments 
> coordinate that they use sftp object code with the same algorithm for 
> the encryption.  I assume the encryption is based on the sftp code.
>
>
>
> ____________________________________________________________
> Click now for the latest rates on a great home improvement loan! 
> <http://thirdpartyoffers.juno.com/TGL2132/fc/PnY6rbt45Eg3FSbRylDNdbBuJOQ3VHNsQBwKOt0mkX1Dts7LCf1jB/>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Discuss mailing list
> Discuss at mug.org
> http://www.mug.org/cgi-bin/mailman/listinfo/discuss
>   

_______________________________________________
Discuss mailing list
Discuss at mug.org
http://www.mug.org/cgi-bin/mailman/listinfo/discuss