Ok, the problem is that I am using Pycharm on El Capitan. I am trying to connect to a server that has strict login Kexalgorithms using the newer Key Exchange Algorithms than Pycharm seems to have the capability to use... but here is the catch, I can log in from a terminal, and this same version of Pycharm works on Ubuntu 14.04 (and I can log in from there)
I can log in normally with ssh successfully from a terminal.
When I attempt to log in to the server using Pycharm, I receive the error "Algorithm negotiation fail.
Here is an entry in my /var/log/messages
Jan 22 23:15:56 (none) auth.crit sshd[2520]: fatal: Unable to negotiate with 10.10.16.125: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha1 [preauth]'
This has been asked on StackOverflow, but the person seemed to solve the problem for themselves by adding the option to allow this very old version of Diffie-Helman to sshd_config file on the server.
I do not have permission to add the old version of this Diffie-Helman to the sshd_config
I was previously on Yosemite, and thought that doing the upgrade would fix this because of newer ssh and openssl versions, however that did not fix the problem.
Do I need to update a specific crytpo related library for applications that have ssh capabilities to be able to use these new features?
Took me a while to get back here to answer my own questions.
Update the Jsch library
Pycharm version 4 contains a library that has a bug. This bug prevents SFTP communication using certain SSH key-exchange-algorithms with anything other than basic Diffie-Helman-group1* ciphers. So, we need to update the library in order for Pycharm to communicate with our VM. Our VM only allows much more modern keys and prevents the legacy Diffie-Helman-group1* ciphers.
Pycharm 4 has an outdated version of a java library called Jsch that it uses to communicate with SFTP (which is needed to transfer the helper files). To resolve this, we just need to update the library.
The updated library was found at sourceforge and is located at: http://sourceforge.net/projects/jsch/files/jsch.jar/0.1.53/
Versions Affected
Download Steps
Note: This was fixed in Pycharm 5, and updating fixed it for my coworkers, but if you have other java based applications, this may help you.
Note: I ultimately found this by digging through the Pycharm's log. I could see that there issues regarding the libary and a few google searches later and I found the library on sourceforge.
Collected from the Internet
Please contact [email protected] to delete if infringement.
Comments