Skip to content

SSH

TermZ speaks modern SSH with sensible legacy fallbacks for older network gear, so the same client reaches a new server and a decade-old switch.

Pick an auth method when you create or edit an SSH session:

  • Password — typed each time, or saved as a named credential.
  • Stored credential — reuse a saved credential across many sessions. The Stored credential picker lists both saved passwords and imported SSH keys, each tagged by type, so you choose a key the same way you choose a password. Rotating the credential updates every session that uses it.
  • Private key from a file — point directly at a key file on disk; an encrypted key prompts for (or stores) its passphrase. If you want to reuse a key across sessions and sync it, import it into your credential library instead.

Key exchange, ciphers, and host-key algorithms are negotiated automatically — modern by default, with legacy fallbacks for gear that hasn’t been updated. You can control the offered set per session so you reach old devices without weakening security everywhere else. See Key exchange.

Every new host goes through host-key pinning. On first connect you confirm the server’s fingerprint; TermZ records it and checks it on every later connection, hard-blocking if the key ever changes.