dpwqicw157673
2019-07-10 10:01
浏览 477
已采纳

配置rclone以支持diffie-hellman-group-exchange-sha256 diffie-hellman-group-exchange-sha1

Some quick background. I use rclone to transfer data to a SFTP server. rclone is written in Golang and uses lib crypto under the hood. When we try to establish ssh connection to SFTP server, we get the error message

couldn't connect SSH: ssh: handshake failed: ssh: no common algorithm for key exchange; client offered: [curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group14-sha1 diffie-hellman-group1-sha1], server offered: [diffie-hellman-group-exchange-sha256 diffie-hellman-group-exchange-sha1].

crypto lib has added the support for diffie-hellman-group-exchange-sha256 diffie-hellman-group-exchange-sha1 around 3 weeks ago, but needs to be opt-in. (See https://github.com/golang/crypto/commit/57b3e21c3d5606066a87e63cfe07ec6b9f0db000)

Obviously, the latest rclone version hasn’t opt-in those algorithms support yet. So the question is: Anyone know how to config rclone to opt-in algorithm support for diffie-hellman-group-exchange-sha256 diffie-hellman-group-exchange-sha1

图片转代码服务由CSDN问答提供 功能建议

一些快速的背景知识。 我使用 rclone 将数据传输到SFTP服务器。 rclone用Golang编写,在后台使用lib crypto 。 当我们尝试建立与SFTP服务器的ssh连接时,收到错误消息

无法连接SSH:ssh:握手失败:ssh:没有通用算法 用于密钥交换; 提供的客户端:[curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group14-sha1 diffie-hellman-group1-sha1],服务器 :[diffie-hellman-group-exchange-sha256 diffie-hellman-group-exchange-sha1]。

crypto lib 大约在3周前添加了对 diffie-hellman-group-exchange-sha256的支持diffie-hellman-group-exchange-sha1 ,但需要选择加入。 (请参见 https://github.com/golang/crypto/commit/57b3e21c3d5606066a87e63cfedbec6b9>

很明显,最新的rclone版本尚未选择加入那些算法支持。 所以问题是:任何人都知道如何配置rclone以选择 diffie-hellman-group-exchange-sha256的加入算法支持diffie-hellman-group-exchange-sha1 < / DIV>

  • 写回答
  • 好问题 提建议
  • 关注问题
  • 收藏
  • 邀请回答

1条回答 默认 最新

相关推荐 更多相似问题