Total Commander

Forum - Public Discussion and Support
https://ghisler.ch/board/

SFTP plugin - unsupported ETM HMACs

https://ghisler.ch/board/viewtopic.php?t=72179

Page 1 of 1

SFTP plugin - unsupported ETM HMACs

Posted: 2020-06-29, 16:03 UTC
by Tsunulukai
Hello,

I'm trying to connect to a server that only offers etm (encrypt then mac) HMACs, but the plugin fails to reach a settlement:

Code: Select all

Connect call failed
Transport exception: Unable to reach a settlement: [hmac-sha1, <more hmacs> ] and [hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com]
Their use being recommanded in the sshd_config manpage itself, would you consider supporting them ?
The algorithms that contain "-etm" calculate the MAC after encryption (encrypt-then-mac). These are considered safer and their use recommended.
Here's the list of ETM HMAC from the same man page:

Code: Select all

hmac-md5-etm@openssh.com
hmac-md5-96-etm@openssh.com
hmac-sha1-etm@openssh.com
hmac-sha1-96-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com
umac-64-etm@openssh.com
umac-128-etm@openssh.com
I'd be happy to beta-test this for you.
Best regards,

Re: SFTP plugin - unsupported ETM HMACs

Posted: 2020-06-30, 13:04 UTC
by ghisler(Author)
According to the homepage of the library I use, the etm hmac versions should be supported:
https://github.com/hierynomus/sshj

Could you try with the latest beta? I cannot say when this was added to sshj, but the beta uses the latest version of the library:
https://play.google.com/apps/testing/com.ghisler.tcplugins.SFTP

Re: SFTP plugin - unsupported ETM HMACs

Posted: 2020-06-30, 17:11 UTC
by Tsunulukai
Works perfectly with the current beta !
Thanks :)
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited