Hi, +-From: y...@jcraft.com (Atsuhiko Yamanaka) -- |_Date: Fri, 12 Sep 2014 18:15:12 +0900 ______ | |Frankly to say, there is no hope to connect to that sshd by using |JSch with Java8. It seems that sshd from GlobalSCAPE will use |the longer(>1024) key for "diffie-hellman-group1-sha1", but 1024 length |key must be used in that key exchage method, as defined in RFC4253[1]. |IMHO, it is the implementation bug of GlobalSCAPE. |The second problem is that Java8 has been suddenly changed to reject |long key(>1024) for DSA Signature[2].
FYI, I had sent a request[1] for changing that behavior to security-dev mailing list, and the problem has been fixed[2][3] at last. Java9 will not have the reported problem. [1] http://mail.openjdk.java.net/pipermail/security-dev/2014-September/011228.html [2] https://bugs.openjdk.java.net/browse/JDK-8039921?focusedCommentId=13593153&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13593153 [3] http://hg.openjdk.java.net/jdk9/dev/jdk/rev/edd7a67585a5 Sincerely, -- Atsuhiko Yamanaka JCraft,Inc. 1-14-20 HONCHO AOBA-KU, SENDAI, MIYAGI 980-0014 Japan. Tel +81-22-723-2150 Skype callto://jcraft/ Twitter: http://twitter.com/ymnk Facebook: http://facebook.com/aymnk ------------------------------------------------------------------------------ Dive into the World of Parallel Programming! The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net _______________________________________________ JSch-users mailing list JSch-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jsch-users
