Quote:
However, I thought protocol 1 was vulnerable to man-in-the-middle attacks so why even bother putting it in as an option?
|
This is historical. Most people (perhaps using ancient systems) would rather get an insecure connection than no connection at all: that way they can upgrade and secure their software (perhaps remotely). If you are unhappy about your
ssh falling back to protocol 1 then you can disable this. It is, as you say, an option.