Backwards compatibility to 10.6-10.10?

logicnow / BlueSky

An SSH tunneling solution for remote Mac-to-Mac connectivity (formerly a Mac-MSP product)

Apache License 2.0

39 stars 15 forks source link

Backwards compatibility to 10.6-10.10? #6

Closed bestmacs closed 6 years ago

bestmacs commented 6 years ago

BlueSky 2.0 changed the SSH keys from rsa to ecdsa-sha2-nistp256. This means that only 10.11 and higher can run it.
10.6 - 10.10 will error on reKey sequence when trying to generate keys and do so every time launchd fires it. The additional enforcement of certain ciphers and MACs may also break compatibility with OS X's earlier OpenSSH builds. Need to evaluate the security implications of bringing back rsa on older versions.

bestmacs commented 6 years ago

10.6 is fixed with 2.1. Need to test against 10.10 also, then should be all set.

bestmacs commented 6 years ago

2.1 works properly in 10.10 - still using older crypto, but it connects.