Hi Nick, Have we taken care of this? in Apache Gucamole 1.2.0??? https://issues.apache.org/jira/browse/GUACAMOLE-945
Regards, Abhijeet Jha On Thu, May 21, 2020 at 10:52 AM Abhijeet Jha <[email protected]> wrote: > FYI > > ---------- Forwarded message --------- > From: Nick Couchman <[email protected]> > Date: Thu, May 21, 2020 at 12:24 AM > Subject: Re: Diffie Hellman Kex issue > To: <[email protected]> > > > On Wed, May 20, 2020 at 2:41 PM Abhijeet Jha < > [email protected]> wrote: > >> Hi Nick, >> >> The devices for which we are facing an issue are Cisco Routers. >> >> The libssh version is 1.7.0 >> >> I added this line "KexAlgorithms diffie-hellman-group16-sha512" in file " >> /etc/ssh/sshd_config" on linux machine and then tried ssh session. I got >> below error message. Attached are the guacamole debug logs only for this >> problematic ssh session. >> > > According to the libssh2.org web page, I do not see that particularly > algorithm listed as supported. According to the page the following key > exchange algorithms are currently implemented: > > diffie-hellman-group1-sha1, diffie-hellman-group14-sha1, > diffie-hellman-group-exchange-sha1, diffie-hellman-group-exchange-sha256 > > So, this error is not with Guacamole, this error is a lack of underlying > support within the libssh2 library. > > There is a ticket currently open to migrate Guacamole Server back to using > libssh (instead of libssh2), and it appears that libssh does include the > support for this particular key exchange algorithm. So, once that is > completed, this will likely work. However, the issue is still not a bug in > Guacamole, but lack of support in the underlying liibraries. > > https://issues.apache.org/jira/browse/GUACAMOLE-945 > > -Nick >
