Key re-exchange bug? - WeOnlyDo Discussion board

Open in thread

Key re-exchange bug? (wodSSHServer)

by Jacob Nevins, Wednesday, August 24, 2005, 16:09 (6813 days ago)

Hello,

We (PuTTY) have had a report that freeSSHd, which appears to be based on WeOnlyDo, freezes when PuTTY initiates a repeat key exchange. (PuTTY only started doing this in 0.58.)

The freeSSHd in question reports a version string of WeOnlyDo-1.2.6 , which presumably corresponds to the latest version of your software. We've added that string to our list of buggy implementations, so that development snapshots of PuTTY won't initiate key re-exchanges with WeOnlyDo.

However, that's not an ideal solution security-wise. Can you confirm this as a problem in your product, and if so, say which versions it's in (and what SSH version strings they report)? In particular, if you fix it, we can restrict PuTTY's idea of buggy servers so that key re-exchange isn't needlessly avoided.

(I realise this could in principle be a freeSSHd problem rather than a WeOnlyDo one. What do you think?)

Cheers -- Jacob Nevins

locked

8707 views

Complete thread:

Key re-exchange bug? - Jacob Nevins, 2005-08-24, 16:09
- Re: Key re-exchange bug? - wodSupport, 2005-08-24, 16:30
  - Re: Key re-exchange bug? - wodSupport, 2005-08-28, 01:48
    - Re: Key re-exchange bug? - Florian, 2005-08-30, 23:37
      - Re: Key re-exchange bug? - Jacob Nevins, 2005-08-31, 12:20
        Re: Key re-exchange bug? - mario_33, 2008-07-12, 15:45
        Re: Key re-exchange bug? - woddrazen, 2008-07-12, 18:55
        Re: Key re-exchange bug? - mario_33, 2008-07-12, 19:45
        Re: Key re-exchange bug? - woddrazen, 2008-07-13, 01:03
        Re: Key re-exchange bug? - mario_33, 2008-07-13, 01:57
        Re: Key re-exchange bug? - woddrazen, 2008-07-13, 09:03
        Re: Key re-exchange bug? - mario_33, 2008-07-13, 12:57
        Re: Key re-exchange bug? - woddrazen, 2008-07-13, 20:01
        Re: Key re-exchange bug? - woddrazen, 2008-07-14, 10:07
        Re: Key re-exchange bug? - mario_33, 2008-07-14, 13:31

...wodFtpDlx was exactly what I needed, it worked, and it was priced right...

David Keenan

Serengeti Systems Incorporated

Fantastic product by the way, it has helped us tremendously on a daily basis. Keep up the good work.

Ben Lewis

Waterson Consulting Ltd.

We are having great success with your component ... email server that has over 750 000 mailboxes back ended by a SQL server...

Conrad Leigh

Leaf Wireless

Don't be fooled by the cost, it's value and quality far exceeds the price being charged!

Ian D. Mead, author of UltraEdit-32

IDM Computer Solutions

Count us as a satisfied WeOnlyDo customer. We appreciate your terrific support to get the secure Telnet working properly.

Don Fitzpatrick

InterNetworx Systems

Congratulations on an excellent product and first rate support!

Sander Pool

Rhapsody Networks

Your .NET components allow us to blend .NET technology seamlessly with secure communication, and with excellent technical support.

Bil Bragg

Dionach

We have recently completed a large 1200+ location project where reliable Telnet and SSH connectivity was required. wodSSH worked flawlessly and allowed our staff to complete our project ontime and within budget.

James Sievers

Harbor Technologies

The people at WeOnlyDo are amazing! ... I always get a super fast response from customer service, and the products are great too. Thanks WeOnlyDo

Jeff Hall

Occupational Health Research

We are having great success with your component ... email server that has over 750 000 mailboxes back ended by a SQL server...

Conrad Leigh

Leaf Wireless

Product groups

Support

Key re-exchange bug? (wodSSHServer)

About

Contact