On May 7, 2024, at 5:18 AM, Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost> wrote:
I've had a report of someone having problems connecting to something that
identifies itself with the totally useless "SSH-2.0-FTP Server ready". As
soon as it sees a SSH_MSG_KEY_DH_GEX_REQUEST it disconnects, wanting to see a
SSH_MSG_KEX_DH_GEX_REQUEST_OLD from around 20 years ago instead (and yes, it
also does blowfish, 3des, rsa1024-sha1, hmac-ripemd160, and a bunch of other
stuff).
Does anyone know what this is? And it wasn't really found at an
archaeological dig, it's a live production server in active use.
A quick search for that identification string with Google seems to point at a “Chilkat sFTP” server:
 | |
That page mentions the use of this as the “SshVersion”, and shows a “DllDate” in 2014, which could explain some of its choice of algorithms.
--
Ron Frederick
ronf%timeheart.net@localhost
Ron Frederick
ronf%timeheart.net@localhost