Authenticating to dropbear using ecdsa-sha2-nistp256
Matt Johnston
matt at ucc.asn.au
Fri Nov 11 13:40:41 AWST 2022
On 2022-11-11 11:50 am, Rogan Dawes wrote:
> I was under the impression that the ssh protocol included a handshake step where supported algorithms were exchanged, and keys that do not match are eliminated?
For public key auth the client sends each public key it has to offer,
the server sends a "key OK" message if it's accepted, and then the
client sends its signature. So Dropbear on openwrt gets the ecdsa key
offer and sends a failure response since it doesn't accept that ecdsa
key type.
Matt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/attachments/20221111/138cca9f/attachment.htm>
More information about the Dropbear
mailing list