FS#3452 : can't conntect to dropbear using OpenSSH 8.4

OpenWrt/LEDE Project

Quick Actions

View Dependency Graph

Status Unconfirmed
Percent Complete
0%
Task Type Bug Report
Category Base system
Assigned To No-one
Operating System All
Severity Low
Priority Very Low
Reported Version openwrt-19.07
Due in Version Undecided
Due Date Undecided
Private

Attached to Project: OpenWrt/LEDE Project
Opened by Lothia - 14.11.2020

FS#3452 - can't conntect to dropbear using OpenSSH 8.4

Can’t connect to dropbear after upgrading to Fedora 33

Using: OpenSSH_8.4p1, OpenSSL 1.1.1h FIPS 22 Sep 2020

Adding “PubkeyAcceptedKeyTypes=+ssh-dss” to $.ssh/config Hosts section solves the issue.

Dominik Mierzejewski commented on 18.01.2021 10:37

This is due to revised security policies in Fedora 33+. See Fedora bug 1884920 and this Reddit thread . The solution would be to enable ED25519 or at least ECSDA key support in dropbear. And the actual work-around (Fedora-side) is to add this snippet to ~/.ssh/config:

Host openwrt-device.localdomain
        PubkeyAcceptedKeyTypes +ssh-rsa

Loading...

Keyboard shortcuts

Available keyboard shortcuts

SHIFT+ALT+l Login Dialog / Logout
SHIFT+ALT+a Add new task
SHIFT+ALT+m My searches
SHIFT+ALT+t focus taskid search

Tasklist

o open selected task
j move cursor down
k move cursor up

Task Details

n Next task
p Previous task
SHIFT+ALT+e ENTER Edit this task
SHIFT+ALT+y Close Task

Task Editing

SHIFT+ALT+s save task