- djm@cvs.openbsd.org 2014/01/09 23:26:48

[sshconnect.c sshd.c] ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient, deranged and might make some attacks on KEX easier; ok markus@
author: djm <djm> 2014-01-09 23:59:24 +0000
committer: djm <djm> 2014-01-09 23:59:24 +0000
commit: 97efc2dee099e942683b71888780793db38a5944 (patch)
tree: 98c9b8d6469fb1a90ef084e4fc9d76e165e56b7a /sshconnect.c
parent: e057c06b0cb4dd512d3c166856b40447d849a3b1 (diff)
download: openssh-97efc2dee099e942683b71888780793db38a5944.tar.gz
1 files changed, 4 insertions, 1 deletions
diff --git a/sshconnect.c b/sshconnect.c
index 791b31c1..d21781ea 100644
--- a/sshconnect.c
+++ b/sshconnect.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: sshconnect.c,v 1.243 2013/12/30 23:52:27 djm Exp $ */
+/* $OpenBSD: sshconnect.c,v 1.244 2014/01/09 23:26:48 djm Exp $ */
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -662,6 +662,9 @@ ssh_exchange_identification(int timeout_ms)
 		fatal("Protocol major versions differ: %d vs. %d",
 		    (options.protocol & SSH_PROTO_2) ? PROTOCOL_MAJOR_2 : PROTOCOL_MAJOR_1,
 		    remote_major);
+	if ((datafellows & SSH_BUG_DERIVEKEY) != 0)
+		fatal("Server version \"%.100s\" uses unsafe key agreement; "
+		    "refusing connection", remote_version);
 	if ((datafellows & SSH_BUG_RSASIGMD5) != 0)
 		logit("Server version \"%.100s\" uses unsafe RSA signature "
 		    "scheme; disabling use of RSA keys", remote_version);
author	djm <djm>	2014-01-09 23:59:24 +0000
committer	djm <djm>	2014-01-09 23:59:24 +0000
commit	97efc2dee099e942683b71888780793db38a5944 (patch)
tree	98c9b8d6469fb1a90ef084e4fc9d76e165e56b7a /sshconnect.c
parent	e057c06b0cb4dd512d3c166856b40447d849a3b1 (diff)
download	openssh-97efc2dee099e942683b71888780793db38a5944.tar.gz