Forum Discussion

Nimbostratus

Jan 11, 2024

Solved

Add ssh-rsa to 17.1.1 host key algorithm

Hello, I've recently upgraded a HA pair of LTM devices to 17.1.1 and found out that I can no longer access the devices through 3rd party software SSH connection. I've been searching for the artic...

application delivery

security

Michael_Saleem
Jan 17, 2024
Good find.

Unfortunately, I do not think there is any alternative way. The only thing I can think of is possibly proxying the SSH client connection via a Jumphost server which supports the ssh-rsa host key algorithm.

You may want to create a Support Case with F5 to see if they are able to provide any further suggestions.

PhatANhappy

MVP

Jan 11, 2024

I would check this:
bash
grep "IFS" /bin/scp-checkfp
IF - you have " --- it should be changed to '
will not effect traffic flow - and should fix without restarting anything.

process:

mount -o remount,rw /usr
vi /bin/scp-checkfp
search for : IFS=$"\n"
change to " IFS=$'\n'
mount -o remount,ro /usr

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Add ssh-rsa to 17.1.1 host key algorithm

Recent Discussions

value analytic latency

BIG-IP VE - qemu on an Apple Silicon Macbook

Minimum connection to guarantee the use of corporate VPNs.

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

Local Traffic Policy rule or irule to bypass the BIG-IP ASM

Related Content

What is the "Ring Hash" Load-Balancing Algorithm?

TCP Nagle Algorithm

Intro to Load Balancing for Developers – The Algorithms

A New and Better Nagle Algorithm

Implementing The Exponential Backoff Algorithm To Thwart Dictionary Attacks

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS