X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:message-id:date:from:to:subject
	:in-reply-to:references; q=dns; s=default; b=jPYxSm2Xlg8Vi3uzdRh
	Ikjfaox/cyjXGX2rdk5QdzMQNvwA5jIVGK6IE9hN6XQhZNSHEpGeYS5fEWUR+O9E
	DfewATfao27/pdN39k2QWVAg1QB8Ofur5REtnPUgh8QVe61mq5ThFqFOqCyj0lAV
	I4H3z3HrmSqAXhRalvEqWfbM=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:message-id:date:from:to:subject
	:in-reply-to:references; s=default; bh=qkOmntS4KAUWD7JDkWBJ27jWW
	JE=; b=jNbNvUPepDU5Uugcb39FQUVcnE8uqvg2b1wpyupuGCkuc4Eyua+R4SIk2
	P8Kc+0zFi9HJbMvv4t7BQRh6Z6H/gfZXH2aCJuL1QIdMODOX2ORD9JvtbrUw9NhO
	uxstkaNzblN0xA4o9MJdwyeEhY9lXmR2RT2QI1Km4J8GDNUK+I=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=1.9 required=5.0 tests=AWL,BAYES_20,HK_RANDOM_ENVFROM,HK_RANDOM_FROM,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_DNSWL_LOW autolearn=no version=3.3.2
X-HELO: sneak2.sneakemail.com
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <17576-1442364299-983686@sneakemail.com>
Date: Tue, 15 Sep 2015 18:44:55 -0600
From: "John Hein" <3fbmqnhaz4 AT snkmail DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: problem with ~/.ssh/config ?
In-Reply-To: <CAD8GWsvMTrzmJZhp2DQtfKNk6bpNAVSL1N1uYN5YVyHLqJ4yOw@mail.gmail.com>
References: <CAD8GWsvMTrzmJZhp2DQtfKNk6bpNAVSL1N1uYN5YVyHLqJ4yOw AT mail DOT gmail DOT com>

Lee wrote at 17:59 -0400 on Sep 15, 2015:
 > OpenSSH 7.0 defaults to no support for diffie-hellman-group1-sha1 key
 > exchange which is a problem with certain devices:
 >
 > $ ssh  10.10.3.5
 > Unable to negotiate with 10.10.3.5: no matching key exchange method
 > found. Their offer: diffie-hellman-group1-sha1
 >
 > http://www.openssh.com/legacy.html  has two work-arounds:
 > 1. add "-oKexAlgorithms=+diffie-hellman-group1-sha1" to the ssh
 > command -- which works for me
 > 2. add "Host * KexAlgorithms +diffie-hellman-group1-sha1" to
 > ~/.ssh/config -- which does not work for me
 >
 > What's the trick for getting the KexAlgorithms param in ~/.ssh/config to work?
 >
 > $ cat ~/.ssh/config
  .
  .
 > # IOS devices running "Remote protocol version 1.99, remote software
 > version Cisco-1.25"
 > # only do diffie-hellman-group1-sha1 for key exchange & OpenSSH 7.0
 > has it disabled by default.
 > # re-enable & add to the end of the list:
 > Host  *  KexAlgorithms +diffie-hellman-group1-sha1
  .
  .


The trick is a newline.  Host entry on one line, config settings
on lines below it.

Not a cygwin question.

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple