Appendix D. SSH-1 Features of OpenSSH and Tectia

This appendix describes the SSH-1 protocol features of OpenSSH and Tectia. Since we recommend against using SSH-1, you might never encounter these features, but we mention them for completeness.

OpenSSH Features

Serverwide Configuration

KeyRegenerationInterval (or sshd -k)

Set the number of seconds between generations of the SSH-1 server key. This temporary key is used only for SSH-1 connections. The default is 3600 seconds (1 hour), and a value of zero disables regeneration.

RhostsRSAAuthentication

Permit or deny authentication by the RSA key together with authentication by rhosts files.

RSAAuthentication

Permit or deny authentication by the RSA key.

ServerKeyBits (or sshd -b)

Set the number of bits in the SSH-1 server key: see KeyRegenerationInterval above. The default is 768 bits, and the fewest allowable is 512 bits.

Client Configuration

Cipher

Replaced by Ciphers for SSH-2 protocol connections

RhostsRSAAuthentication

Same as for serverwide configuration

RSAAuthentication

Same as for serverwide configuration

Files

~/.ssh/identity, ~/.ssh/identity.pub

These files contain your default private and public keys, respectively, for public-key authentication.

/etc/ssh/ssh_host_key

This system file contains the SSH-1 protocol (RSA) host key.