Uploaded image for project: 'Guacamole'
  1. Guacamole
  2. GUACAMOLE-407

Update guacd Docker image to build against more recent dependencies

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Trivial
    • Resolution: Done
    • None
    • 1.0.0
    • guacd-docker
    • None

    Description

      The version of libssh2 within CentOS 7 lacks support for the more-recent versions of SSH key exchange methods and MACs. As the guacamole/guacd Docker image uses CentOS 7, it also lacks this support.

      Currently, the following key exchange methods are supported:

      • diffie-hellman-group14-sha1
      • diffie-hellman-group-exchange-sha1
      • diffie-hellman-group1-sha1

      and the following MACs are supported:

      • hmac-sha1,hmac-sha1-96
      • hmac-md5,hmac-md5-96
      • hmac-ripemd160
      • hmac-ripemd160@openssh.com

      More recent libssh2 includes support for SHA2 and curve25519. See https://wiki.mozilla.org/Security/Guidelines/OpenSSH for more information and references.

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. GUACAMOLE-435 SSH handshake failing

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Activity

            People

              mjumper Mike Jumper
              svengo Sven Gottwald
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: