Bastillion can't connect to hardened ssh servers (missing encryption algorithms in bastillion)

bastillion-io / Bastillion

Bastillion is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user's public SSH keys.

https://www.bastillion.io

Other

3.17k stars 380 forks source link

Bastillion can't connect to hardened ssh servers (missing encryption algorithms in bastillion) #409

Closed netchild closed 2 years ago

netchild commented 2 years ago

Hi,

https://www.sshaudit.com/hardening_guides.html contains guides for a hardened ssh setup. Bastillion can't connect to servers hardened this way (seems only unsupported encryption algorithms are allowed by the hardened config).

Bye, Alexander.

skavanagh commented 2 years ago

You can use a ecdsa key per https://github.com/bastillion-io/Bastillion/blob/master/src/main/resources/BastillionConfig.properties#L8

Also I did switch to use this library - https://github.com/mwiede/jsch which is more actively maintained.

skavanagh commented 2 years ago

https://github.com/bastillion-io/Bastillion/commit/582d400eff84747606405ecf7de5cde504e268cf