Wing FTP Software

The official forum of Wing FTP Software
https://bbs.wftpserver.com/

SFTP connection requires deprecated ssh-rsa (SHA-1) signature algorithm

https://bbs.wftpserver.com/viewtopic.php?t=4092

Page 1 of 1

SFTP connection requires deprecated ssh-rsa (SHA-1) signature algorithm

Posted: Wed Feb 12, 2025 9:25 pm
by taylorjp75
I have a client using FTP Rush to connect to my SFTP server. We recently updated the server's cryptography configuration and found that FTP Rush was unable to connect.

Issue Details:
We updated our SFTP server to allow only the following secure signature algorithms:

rsa-sha2-256
rsa-sha2-512
ecdsa-sha2-nistp256
ecdsa-sha2-nistp384
ecdsa-sha2-nistp512

After making this change, a client using FTP Rush encountered a protocol error and was unable to connect. We performed additional testing and found that re-enabling the deprecated ssh-rsa (SHA-1) signature algorithm allowed the connection to succeed.

Question:
Is this expected behavior? Does FTP Rush support rsa-sha2-256 or ecdsa signatures, or is ssh-rsa required for compatibility?

Re: SFTP connection requires deprecated ssh-rsa (SHA-1) signature algorithm

Posted: Thu Feb 13, 2025 1:18 am
by FTP
Yes, because old FTP Rush 2.x doesn't support those key exchange algorithms, maybe you can use FTP Rush 3.x instead: https://www.wftpserver.com/ftprush.htm

Re: SFTP connection requires deprecated ssh-rsa (SHA-1) signature algorithm

Posted: Fri Feb 14, 2025 7:22 pm
by taylorjp75
Hello,
Thank you for the reply. The client and our testing used the latest version, 3.5.8.

Re: SFTP connection requires deprecated ssh-rsa (SHA-1) signature algorithm

Posted: Sat Apr 12, 2025 7:21 am
by Kiran35
Hello, thank you for your response. Our client and tests utilized the latest software release, version 3.5.8, during our analysis.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited