Opened 3 months ago

Last modified 3 months ago

#12149 new Bug report

Can't Connect to SFTP server with newest version

Reported by: Alex Gitelzon Owned by:
Priority: high Component: FileZilla Client
Keywords: mod_sftp Cc:
Component version: 3.47.2.1 Operating system type: Windows
Operating system version: Windows 10 1909 (build 18363) 64-bit edition

Description

I used to be able to connect to my sftp server and now I can't with a strange error message:

Error:	The first host key type supported by the server is ssh-rsa, which is no longer secure. Aborting connection.

I tried switching the server to use a ecdsa host key and I got the error message:

Error:	The first host key type supported by the server is ecdsa-sha2-nistp521, which is no longer secure. Aborting connection.

Thanks,
Alex

Change History (2)

comment:1 by Alex Gitelzon, 3 months ago

FileZilla Client


Version: 3.47.2.1

Build information:

Compiled for: x86_64-w64-mingw32
Compiled on: x86_64-pc-linux-gnu
Build date: 2020-03-11
Compiled with: x86_64-w64-mingw32-gcc (GCC) 8.3-win32 20190406
Compiler flags: -g -O2 -Wall

Linked against:

wxWidgets: 3.0.5
SQLite: 3.31.1
GnuTLS: 3.6.12

Operating system:

Name: Windows 10 (build 18363), 64-bit edition
Version: 10.0
Platform: 64-bit system
CPU features: sse sse2 sse3 ssse3 sse4.1 sse4.2 avx aes pclmulqdq rdrnd lm
Settings dir: C:\Users\alex\AppData\Roaming\FileZilla\

comment:2 by Alex Gitelzon, 3 months ago

I figured out my issue. I had changed my default putty settings to warn when the host keys are using any algorithm other than Ed25519. Filezilla seems to take that warning as insecure and doesn't allow for the connection to continue.

Filezilla, should prompt users and allow them to continue when the Putty setting Connection->SSH->Host Keys setting says that a given SSH algorithm should be warned about.

Note: See TracTickets for help on using tickets.