login about faq

How can I find out what encryption and MAC is actually beingg used by a connection ? The sessionlog lists several; whic one is the connection actually using ?

TRAN* Established TCP/IP connection with SSH server
TRAN> SSH-2.0-PuTTY_Local:_May_14_2009_21:12:18
TRAN< SSH-2.0-IPSSH-6.8.0
TRAN> KEXINIT
TRAN< KEXINIT
TRAN* Key Algorithms: diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
TRAN* Host Key Algorithms: ssh-rsa,ssh-dss
TRAN* Out Encryption: aes128-cbc,aes192-cbc,aes256-cbc,blowfish-cbc,cast128-cbc,3des-cbc,des-cbc,des-cbc,arcfour128,arcfour
TRAN* In Encryption: aes128-cbc,aes192-cbc,aes256-cbc,blowfish-cbc,cast128-cbc,3des-cbc,des-cbc,des-cbc,arcfour128,arcfour
TRAN* Out MAC: hmac-sha1,hmac-sha1-96,hmac-md5,hmac-md5-96
TRAN* In MAC: hmac-sha1,hmac-sha1-96,hmac-md5,hmac-md5-96
TRAN* Out Compress: none
TRAN* In Compress: none
TRAN> KEXDH_INIT
TRAN< KEXDH_REPLY
TRAN* DSS signature verified
TRAN> NEWKEYS
TRAN< NEWKEYS
TRAN* SSH Key Exchange Success.
TRAN> IGNORE

asked Dec 16 '14 at 17:48

Willem's gravatar image

Willem
11


I will make this easy to obtain from the LastErrorXml. What is the exact build that you would need? (Programming language, operating system, .NET Framework, VC++ version, Perl version, etc.)

link

answered Dec 17 '14 at 13:09

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

I am targeting .NET Framework 4.0, C#.

link

answered Dec 17 '14 at 13:26

Willem's gravatar image

Willem
11

In the new build (starting with v9.5.0.47) the LastErrorXml after calling Connect, will contain XML nodes like this:

    <ChosenIncomingEncryption>aes256-ctr</ChosenIncomingEncryption>
    <ChosenOutgoingEncryptoin>aes256-ctr</ChosenOutgoingEncryptoin>
    <ChosenIncomingMac>hmac-sha2-256</ChosenIncomingMac>
    <ChosenOutgoingMac>hmac-sha2-256</ChosenOutgoingMac>
    <ChosenIncomingCompression>zlib@openssh.com</ChosenIncomingCompression>
    <ChosenOutgoingCompression>zlib@openssh.com</ChosenOutgoingCompression>
    <ChosenKexAlgorithm>diffie-hellman-group-exchange-sha256</ChosenKexAlgorithm>
    <ChosenHostKeyAlgorithm>ssh-dsa</ChosenHostKeyAlgorithm>

link

answered Dec 17 '14 at 13:26

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

edited Dec 17 '14 at 13:27

Thanks! When will v9.5.0.47 be available ?

link

answered Dec 17 '14 at 13:29

Willem's gravatar image

Willem
11

I'll post a pre-release download here...

(Dec 17 '14 at 13:30) chilkat ♦♦
link

answered Dec 17 '14 at 13:46

chilkat's gravatar image

chilkat ♦♦
11.8k316358420

Thanks again. The LastErrorText/Xml/Html indeed contains the information on the chosen ciphers, etc.

I went back to v9.3 that I had been using, and it also has this information. Does that make sense ?

link

answered Dec 17 '14 at 14:05

Willem's gravatar image

Willem
11

Yes, but it wasn't as easy to parse because the tags would be "info" and there are lots of other "info" tags. With this, the XML tags are unique and the contents are more specific and exact.

(Dec 17 '14 at 14:15) chilkat ♦♦
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×89
×64

Asked: Dec 16 '14 at 17:48

Seen: 1,194 times

Last updated: Dec 17 '14 at 14:15

powered by OSQA