mirror of
https://github.com/nmap/nmap.git
synced 2026-01-13 09:59:01 +00:00
b27feed980
ssh-hostkey was hitting an assertion failure when scanning OpenSSH 6.7. The cause was a failure to check for a shared KEX algorithm. We just assumed diffie-hellman-group1-sha1 would be supported, since RFC 4253 says it "MUST be supported". This adds support for group14, which is a 2048-bit modulus; key strength was likely the reason for dropping group1. A more complete solution would be to support more KEX algorithms, but that's beyond the scope of the bug report.
10 KiB
10 KiB