Confusing Concepts about SFTP: SSH2 vs OpenSSH

Credit and copied from https://dada.tw/2008/01/03/70/
Terminology: SSH Protocols and Products
SSH
    A generic term referring to SSH protocols or software products.
SSH-1
    The SSH protocol, Version 1. This protocol went through several
    revisions, of which 1.3 and 1.5 are the best known, and we will
    write SSH-1.3 and SSH-1.5 should the distinction be necessary.
SSH-2
    The SSH protocol, Version 2, as defined by several draft standards
    documents of the IETF SECSH working group.
SSH1
    Tatu Ylönen's software implementing the SSH-1 protocol; the original
    SSH. Now distributed and maintained (minimally) by SSH
    Communications Security, Inc.
SSH2
    The "SSH Secure Shell" product from SSH Communications Security, Inc.
    This is a commercial SSH-2 protocol implementation, though it is
    licensed free of charge in some circumstances.
ssh (all lowercase letters)
    A client program included in SSH1, SSH2, OpenSSH, F-Secure SSH, and
    other products, for running secure terminal sessions and remote
    commands. In SSH1 and SSH2, it is also named ssh1/ssh2, respectively.
OpenSSH
    The product OpenSSH from the OpenBSD project,
    which implements both the SSH-1 and SSH-2 protocols.
OpenSSH/1
    OpenSSH, referring specifically to its behavior
    when using the SSH-1 protocol.
OpenSSH/2
    OpenSSH, referring specifically to its behavior
    when using the SSH-2 protocol.
Please note: 

1. SSH2 is a name of a product of SSH Communications Security, Inc., https://www.ssh.com, a commercial SSH-2 implementation.

2. SSH2 and OpenSSH use similar private key format(RFC 4716 format, https://www.ietf.org/rfc/rfc4716.txt), but there are still slight differences, e.g. no Subject line in OpenSSH private key format, https://stackoverflow.com/questions/43915130/does-ssh-net-accept-only-openssh-format-of-private-key-if-not-what-are-the-res

3. However, the public key format is very different. SSH2 still uses RFC 4716 format for public key, but OpenSSH doesn't.
(1) OpenSSH public key example


ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC+J/TF1ekKflC3Pn0ilOncacTA+koUrZ9/CoLQf0zaeMLvUFVeHUEK40j/WRNni2yCdHxfoA2GIPB2k4AU6Q124Gcje/ekjyn3gSj5E2Lf4W8Ih/fDbBBFP4WswL4UZkFLaGeq7+Jmz1iaV0QWgNn3oK2mZclTRVTn4bXAsWauTdnXiiYdiUR3wQu1VPW13zD9T6DvQB8tIXeghxsEdFe8vSa8H1tN6JpOMBucSzK5PudRcAW8aaMxRNavf5Uln5cSM6qjZNj51VpQtjax58Hoaqimq1wEDDdU+0/ee+aVyecqzu4Y7k9JB+NeMR+j64o13p6Duugg7rmT66JC1ZIf user@domain@client



(2)SSH2 public key example(SSH2.com or RFC 4716 Format)


---- BEGIN SSH2 PUBLIC KEY ----

Comment: "rsa-key-20171003"

AAAAB3NzaC1yc2EAAAABJQAAAQEAq0reEUNW7jxasNUaRHtKO+t9Yi1moEdFL7Tw
nuhPVcF6qOgW+MAT7/Taf1N/5jwueVTRU7t+5i5FyOIIqZ/XMZlWDoqmf75hV1Vi
BXVz3z2XhMINK2fqYKxZquF/RGRiVx8gRu6Bq05OOqaQmBv9uwoIurFLQFLOX8Ob
VvGn35824ZBQH3yDUcFItwUomdN6CPV83XeoDM3EGQAhVehBLFhpqeKqf+23EN8d
KsUvJ90/9ncqbccQrT+vCEIhB9mn1BOaUCUbYYZaGNZmonwR8okrecxxJCZQVR/N
INW/D4XHPNFjEFO60fVVKMjWBt27EWP7zjhDgs3FXyYlea04kw==
---- END SSH2 PUBLIC KEY ----
3. SSH Client Tools

 If you see the suffix "2", it's SSH2.

For example, ssh2.exe is for SSH2 only. For OpenSSH, the name always is ssh.exe

Other tools like ssh-keygen2.exe/ssh-keygen.exe are similar. 

Comments

Post a Comment

Popular posts from this blog

Use GnuPG Tools or C# Code for PGP Encryption and Signature

For PGP encryption and signature, usually we use PGP command line tools for test purpose and finally use C# application for production. Mine is a Net Core 2.0 console application using NuGet package PgpCore,  https://github.com/mattosaurus/PgpCore. PgpCore is based on BouncyCastle.NetCore which supports the standard OpenPGP keys. Here w use the popular GnuPG (GPG) tools to generate OpenPGP key pair. Download and Install GPG for Windows Download from  https://gpg4win.org/download.html . By default the installation will create two folders (here we use command line tools only): Gpg4Win UI (Kleopatra): C:\Program Files (x86)\Gpg4win Command line tools: C:\Program Files (x86)\GnuPG\bin Generate a GPG Key Pair For GnuPG 2.2.1 and above:     C:\Program Files (x86)\GnuPG\bin> gpg --full-generate-key For old versions of GnuPG:     C:\Program Files (x86)\GnuPG\bin> gpg --gen-key Common GPG Commands List public keys: gpg --lis...
Read more

Errors in Net Core Add-Migration

Visual Studio 2017 version 15.5.2, Net Core 2. Add-Migration error: Exception calling "SetData" with "2" argument(s): "Type  'Microsoft.VisualStudio.ProjectSystem.VS.Implementation.Package.Automation.OAProject' in  assembly 'Microsoft.VisualStudio.ProjectSystem.VS.Implementation, Version=15.0.0.0,  Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' is not marked as serializable." At C:\Users\wanj\.nuget\packages\entityframework\6.2.0\tools\EntityFramework.psm1:720 char:5 +     $domain.SetData('project', $project) +     ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~     + CategoryInfo          : NotSpecified: (:) [], MethodInvocationException     + FullyQualifiedErrorId : SerializationException Exception calling "SetData" with "2" argument(s): "Type  'Microsoft.VisualStudio.ProjectSystem.VS.Implementation.Package.Automation.OAProject' in  assembly 'Microsoft.VisualStudio.ProjectSystem...
Read more

Set up Visual Studio 2017 for .Net Core Application Development

Image
The Default Profile setting in LibPrograms/Properties/LaunchSettings.json {   "iisSettings": {     "windowsAuthentication": true,     "anonymousAuthentication": true,     "iis": {       "applicationUrl": "http://localhost:8000",       "sslPort": 0     },     "iisExpress": {       "applicationUrl": "http://localhost:49497/",       "sslPort": 0     }   },   "profiles": {     "IIS": {       "commandName": "IIS",       "launchBrowser": true,       "environmentVariables": {         "ASPNETCORE_ENVIRONMENT": "Development"       }     },     "IISExpress": {       "commandName": "IIS",       "launchBrowser": true,       "environmentVariables": {   ...
Read more