openssh unix dev - Mar 2002 - preferred key exchange methods

is there a way of specifying preferred key exchange methods on client end
with OpenSSL 3.1 using ssh2?

i'm trying to determine which key exchange method is actually being used
for a connection but i'm i bit confused by the debug messages:

...
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 121/256
debug1: bits set: 1553/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
The authenticity of host 'foo.faa.fi (128.214.56.84)' can't be
established.
RSA key fingerprint is 84:e2:3f:20:c4:61:e0:3e:ba:04:f6:62:98:73:97:a0.
Are you sure you want to continue connecting (yes/no)? 

the debug messages indicate Diffie-Hellman key exchange is used but with
an RSA key. is this correct?

-- 
	aspa

On Fri, Mar 08, 2002 at 11:44:15AM +0200, Marko Asplund
wrote:
> is there a way of specifying preferred key exchange methods on client end
> with OpenSSL 3.1 using ssh2?
you can switch the preferred key type but not key-exchange method.

     HostKeyAlgorithms
             Specifies the protocol version 2 host key algorithms that the
             client wants to use in order of preference.  The default for this
             option is: ``ssh-rsa,ssh-dss''.

here's a small patch for making it easier to build OpenSSH RPM packages on
Linux using an OpenSSL library installed somewhere else than the default
location.

-- 
	aspa
-------------- next part --------------
*** /home1/aspa/openssh.spec	Fri Mar  8 13:45:01 2002
--- openssh.spec	Fri Mar  8 13:56:37 2002
***************
*** 16,21 ****
--- 16,25 ----
  # Do we want smartcard support (1=yes 0=no)
  %define scard 0
  
+ # Specify OpenSSL location.
+ %define with_openssl_dir 0
+ %define openssl_dir /usr
+ 
  # Use Redhat 7.0 pam control file
  %define redhat7 0
  
***************
*** 161,166 ****
--- 165,174 ----
  	EXTRA_OPTS="$EXTRA_OPTS --with-ipv4-default "
  %endif
  
+ %if %{with_openssl_dir}
+ 	EXTRA_OPTS="$EXTRA_OPTS --with-ssl-dir=%{openssl_dir} "
+ %endif
+ 
  %configure \
  	--libexecdir=%{_libexecdir}/openssh \
  	--datadir=%{_datadir}/openssh \
***************
*** 171,177 ****
  	$EXTRA_OPTS
  
  %if %{static_libcrypto}
! perl -pi -e "s|-lcrypto|/usr/lib/libcrypto.a|g" Makefile
  %endif
  
  make
--- 179,185 ----
  	$EXTRA_OPTS
  
  %if %{static_libcrypto}
! perl -pi -e "s|-lcrypto|%{openssl_dir}/lib/libcrypto.a|g" Makefile
  %endif
  
  make