X-Recipient: archive-cygwin AT delorie DOT com
X-Original-To: cygwin AT cygwin DOT com
Delivered-To: cygwin AT cygwin DOT com
DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 2E34E389851C
Authentication-Results: sourceware.org;
 dmarc=none (p=none dis=none) header.from=house.org
Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=house.org
X-Virus-Scanned: Debian amavisd-new at emo02-pco.easydns.vpn
Message-ID: <eeb134dc-e44a-b24f-313d-ac74be6c8fca@house.org>
Date: Thu, 31 Mar 2022 08:24:52 -0700
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
 Thunderbird/91.5.0
Subject: Re: SSH connection from Linux to Windows by CYGSSHD: port 22
Content-Language: en-US
To: cygwin AT cygwin DOT com
References: <AM9PR04MB8748489350878A860F10700B871F9 AT AM9PR04MB8748 DOT eurprd04 DOT prod DOT outlook DOT com>
 <114169113 DOT 20220331161839 AT yandex DOT ru>
From: Chris Roehrig <croehrig AT house DOT org>
In-Reply-To: <114169113.20220331161839@yandex.ru>
X-Spam-Status: No, score=-1.6 required=5.0 tests=BAYES_00, KAM_DMARC_STATUS,
 KAM_NUMSUBJECT, NICE_REPLY_A, RCVD_IN_MSPIKE_H4, RCVD_IN_MSPIKE_WL,
 SPF_HELO_NONE, SPF_PASS, TXREP,
 T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.4
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on
 server2.sourceware.org
X-BeenThere: cygwin AT cygwin DOT com
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: General Cygwin discussions and problem reports <cygwin.cygwin.com>
List-Unsubscribe: <https://cygwin.com/mailman/options/cygwin>,
 <mailto:cygwin-request AT cygwin DOT com?subject=unsubscribe>
List-Archive: <https://cygwin.com/pipermail/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-request AT cygwin DOT com?subject=help>
List-Subscribe: <https://cygwin.com/mailman/listinfo/cygwin>,
 <mailto:cygwin-request AT cygwin DOT com?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: cygwin-bounces+archive-cygwin=delorie DOT com AT cygwin DOT com
Sender: "Cygwin" <cygwin-bounces+archive-cygwin=delorie DOT com AT cygwin DOT com>

I recently had to add the following lines to my Cygwin /etc/sshd_config 
to re-enable RSA in order for my older machines to connect:

HostKeyAlgorithms +ssh-rsa
PubkeyAcceptedAlgorithms +ssh-rsa


-- Chris

On 2022-03-31 06:18, Andrey Repin wrote:
> Greetings, Greco Giovanni!
>
>> must port 22 on Windows server be enabled in a bidirectional way to
>> establish a connection with RSA key exchange?
>> I have a Linux server on a vlan and a Windows server on another vlan, those
>> vlans are connected thru a firewall, where port 22 is enabled from Linux
>> server to Windows server unidirectionally.
>> Connection with user and password works, but not with RSA key exchange: is
>> the problem located on port 22 unidirectional enabling?
> No, it is most likely because you are connecting to Microsoft provided
> OpenSSH.
> `netstat -aon` and `ps ax` will tell you more.
>
>


-- 
Problem reports:      https://cygwin.com/problems.html
FAQ:                  https://cygwin.com/faq/
Documentation:        https://cygwin.com/docs.html
Unsubscribe info:     https://cygwin.com/ml/#unsubscribe-simple