JSch Exception while using ecdh as kex algorithm

Asked Oct 18 '16 at 08:22

Active Nov 03 '16 at 14:51

Viewed 282 times

I am working on FIPS requirement for which i have to use ecdh-sha2-nistp384 as kex algorithm. I changed the config by using

        session.setConfig("StrictHostKeyChecking", "no");
        session.setConfig("CheckKexes", "");
        session.setConfig("kex", "ecdh-sha2-nistp384");
        session.setConfig("ssh-rsa", "ecdsa-sha2-nistp384");

When I am putting this in the code the issue is I am getting the following exception.

com.jcraft.jsch.JSchException: verify: false

which seems like too generic to me. I serached a lot but did not find any person using ecdh for kex using JSch any help will be appreciated.

edited Nov 03 '16 at 14:51

asked Oct 18 '16 at 08:22

AjayLohani

Show us [JSch log](http://www.jcraft.com/jsch/examples/Logger.java.html). – Martin Prikryl Oct 18 '16 at 10:09
I doubt that `StrictHostKeyChecking=no` conforms to FIPS. You lose any security by using that! – Martin Prikryl Oct 18 '16 at 10:09
Yes it is true in FIPS it may not work. I put it just for testing purpose. – AjayLohani Nov 03 '16 at 14:50
Where's the log? + Why did you add `session.setConfig("ssh-rsa", "ecdsa-sha2-nistp384");`? There's no `ssh-rsa` settings. – Martin Prikryl Nov 03 '16 at 15:24

JSch Exception while using ecdh as kex algorithm

0 Answers0