On Wed, May 20, 2020 at 2:41 PM Abhijeet Jha <[email protected]> wrote:
> Hi Nick, > > The devices for which we are facing an issue are Cisco Routers. > > The libssh version is 1.7.0 > > I added this line "KexAlgorithms diffie-hellman-group16-sha512" in file " > /etc/ssh/sshd_config" on linux machine and then tried ssh session. I got > below error message. Attached are the guacamole debug logs only for this > problematic ssh session. > According to the libssh2.org web page, I do not see that particularly algorithm listed as supported. According to the page the following key exchange algorithms are currently implemented: diffie-hellman-group1-sha1, diffie-hellman-group14-sha1, diffie-hellman-group-exchange-sha1, diffie-hellman-group-exchange-sha256 So, this error is not with Guacamole, this error is a lack of underlying support within the libssh2 library. There is a ticket currently open to migrate Guacamole Server back to using libssh (instead of libssh2), and it appears that libssh does include the support for this particular key exchange algorithm. So, once that is completed, this will likely work. However, the issue is still not a bug in Guacamole, but lack of support in the underlying liibraries. https://issues.apache.org/jira/browse/GUACAMOLE-945 -Nick
