Differences

This shows you the differences between two versions of the page.

--- doc:appunti:linux:sa:ssh_config [2022/02/28 18:14] – [no mutual signature algorithm] niccolo
+++ doc:appunti:linux:sa:ssh_config [2022/02/28 18:23] (current) – ["no matching host key type" and "no mutual signature algorithm"] niccolo
@@ Line 21: / Line 21: @@
 This will force the use of **diffie-hellman-group1-sha1** key exchange method, which is considered less secure nowday.
-===== No mutual signature algorithm =====
+===== "no matching host key type" and "no mutual signature algorithm" =====
-Problem connecting from a modern (2022-02) **Termux** environment to an old **Debian 6**
+Problem connecting from an Android environment with **Termux version 0.118.0** (February 2022) to an old **Debian 6 Squeeze**:
+<code>
+Unable to negotiate with 192.168.0.250 port 22:
+  no matching host key type found. Their offer: ssh-rsa,ssh-dss
+</code>
+So the first option to add is **HostKeyAlgorithms**, but there is another and more subtle problem, because no error message is printer unless you add the **-v** option (for verbose),
+<code>
+debug1: send_pubkey_test: no mutual signature algorithm
+debug1: No more authentication methods to try.
+root@192.168.0.250: Permission denied (publickey).
+</code>
+So also the **PubkeyAcceptedKeyTypes** is required:
 <code>