SFTP Client Error openssh 6.6

If you have a new question you’d like our support staff to post a response to, please visit our customer community, GoAnywhere Insiders, to pose the question in our Discussion Boards. We have a thread “Ask Our Tech Experts” that our support team monitors on a regular basis, or you can start a new discussion where other GoAnywhere users and support staff can weigh in. Log in or create your new account at https://insiders.goanywhere.com.

If you need an immediate response, please create a support ticket or contact our support team by email at [email protected].
2 posts Page 1 of 1

weesiong

Posts: 4
Joined: Thu Aug 04, 2016 1:04 am

Post by weesiong » Mon Apr 10, 2017 7:42 pm
Hi All,

After update sfftp client to latest version, when connect to goanywhere MFT, we received this error:
*** 20170409220945 sftp -oBindAddress=xxxxxx -oUserKnownHostsFile=/dev/null -oStrictHostKeyChecking=no -b /xxx.bat xxxxx:/send
0
DH parameter offered by the server (1024 bits) is considered insecure. You can lower the accepted the minimum via the KexDHMin option.
DH_GEX group out of range: 2048 !< 1024 !< 8192

Cause
A change was made to the openssh package, dealing with Diffie-Hellman Group Exchange. Previously, keys of size 1024 - 8192 could be exchanged. The minimum was raised to 1536 (and later to 2048) for added security and to avoid the "logjam" vulnerability. However, if used with some 3rd party ssh implementations which only support 1024, failure will occur. Ideally, the 3rd party ssh configuration or code should be updated to use larger key sizes.

(NOTE: This key exchange does not refer to public/private key pairs.)


The provider may refer to this article:
https://www.novell.com/support/kb/doc.php?id=7016904

weesiong

Posts: 4
Joined: Thu Aug 04, 2016 1:04 am

Post by weesiong » Fri Apr 21, 2017 1:22 am
After upgrade the MFT 5.2.2 to 5.4.4, the issue solved :)
2 posts Page 1 of 1