Weak kex are controlled by wrong variable ? #174

gdelafond · 2018-07-10T14:44:53Z

Lines 79 to 92 in e6d79fa

    
           - name: set weak kex according to openssh-version if openssh >= 6.6 
        
             set_fact: 
        
               ssh_kex: '{{ ssh_kex_66_weak }}' 
        
             when: sshd_version.stdout >= '6.6' and ssh_server_weak_hmac and not ssh_kex 
        
           - name: set kex according to openssh-version if openssh >= 6.6 
        
             set_fact: 
        
               ssh_kex: '{{ ssh_kex_66_default }}' 
        
             when: sshd_version.stdout >= '6.6' and not ssh_kex 
        
           - name: set weak kex according to openssh-version 
        
             set_fact: 
        
               ssh_kex: '{{ ssh_kex_59_weak }}' 
        
             when: sshd_version.stdout >= '5.9' and ssh_server_weak_hmac and not ssh_kex

I think there is a problem here: weak kex should be controlled by ssh_server_weak_kex and not ssh_server_weak_hmac.

The text was updated successfully, but these errors were encountered:

rndmh3ro · 2018-09-16T12:44:42Z

Fixed by #153

rndmh3ro added the bug label Sep 16, 2018

rndmh3ro closed this as completed Sep 16, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Weak kex are controlled by wrong variable ? #174

Weak kex are controlled by wrong variable ? #174

gdelafond commented Jul 10, 2018

rndmh3ro commented Sep 16, 2018

Weak kex are controlled by wrong variable ? #174

Weak kex are controlled by wrong variable ? #174

Comments

gdelafond commented Jul 10, 2018

rndmh3ro commented Sep 16, 2018