rekeying request causes loss of connection
Matt Johnston
matt at ucc.asn.au
Thu Nov 9 21:55:11 WST 2006
On Thu, Nov 09, 2006 at 12:53:30PM +0000, Simon Rowe wrote:
> A colleague is reporting a problem with dropbear 0.48, he's loosing the
> connection after about 8 hours and sees the following error
>
> Hm, dispatch protocol error: type 20, plen 176
> dispatch_protocol_error: rekeying is not supported
>
> The client is very elderly, OpenSSH 2.5.2p2, is there some incompatibility
> with it?
Yeah, looks like OpenSSH before 3.0 [1] didn't implement
rekeying (which is a required part of the SSH spec). A
workaround is to set Dropbear's KEX_REKEY_TIMEOUT in
options.h to a really big (though < 2,000,000,000) number.
Matt
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/dispatch.c#rev1.11
More information about the Dropbear
mailing list