First time here? Check out the FAQ!
THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

sshdump.exe no match for method kex algos error

I use wireshark windows Version 3.4.0 with sshdump. But when I try to capture my remote Linux server, sshdump have below error, seems sshdump is too old are not support some DH key exchange algos?

Error by extcap pipe: * (sshdump.exe:4708): WARNING *: Error creating connection.

* (sshdump.exe:4708): WARNING : Connection error: kex error : no match for method kex algos: *server [curve25519-sha256,[email protected],ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256], client [diffie-hellman-group14-sha1,diffie-hellman-group1-sha1]

zizi's avatar
3
zizi
asked 2020-12-07 02:29:02 +0000
edit flag offensive 0 remove flag close merge delete

Comments

Can you add the output of "Program Files\Wireshark\extcap\sshdump.exe" --version

Chuckc's avatar Chuckc (2020-12-07 02:42:58 +0000) edit
more
  • delete

Thanks! oh... I got error about libwsutil.dll, libssh.dll, glib-2.dll....Already reinstall wireshark, do you know how to fix this? "The code execution cannot proceed because libwsutil.dll was not found. Reinstalling the program may fix this problem. "

zizi's avatar zizi (2020-12-07 02:51:34 +0000) edit
more
  • delete

Try running it from the Wireshark directory:

cd "Program Files\Wireshark"
extcap\sshdump.exe --version
Chuckc's avatar Chuckc (2020-12-07 02:59:50 +0000) edit
more
  • delete

C:\Program Files\Wireshark>extcap\sshdump.exe --version sshdump.exe version 1.0.0 Compiled with libssh version 0.7.3 Running with libssh version 0.7.3/gnutls/zlib

zizi's avatar zizi (2020-12-07 03:01:19 +0000) edit
more
  • delete
add a comment see more comments

1 Answer

0

Newer versions of libssh support the kex needed for your server.
There is an open issue (Some Windows packages need updating) for Windows.
The macos version was recently updated

Can you open a new issue on the Gitlab issues for Wireshark that references sshdump on Windows.

Chuckc's avatar
3k
Chuckc
answered 2020-12-07 03:41:27 +0000, updated 2020-12-07 03:44:44 +0000
edit flag offensive 0 remove flag delete link
more

Comments

Thanks, issue opened.. https://gitlab.com/wireshark/wireshar...

zizi's avatar zizi (2020-12-07 03:57:22 +0000) edit
more
  • delete

Test version of 3.5.0 with new libssh available from link in the Gitlab issue discussion.

Chuckc's avatar Chuckc (2020-12-09 03:39:16 +0000) edit
more
  • delete
add a comment see more comments

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.

Add Answer