diff options
author | V3n3RiX <venerix@koprulu.sector> | 2021-10-08 23:06:07 +0100 |
---|---|---|
committer | V3n3RiX <venerix@koprulu.sector> | 2021-10-08 23:06:07 +0100 |
commit | e23a08d0c97a0cc415aaa165da840b056f93c997 (patch) | |
tree | 4c5f7db60483518201fef36f8cc0712789a08db2 /metadata/news/2021-10-08-openssh-rsa-sha1 | |
parent | 391b5b359a346aff490103da7dddc85047f83830 (diff) |
gentoo resync : 08.10.2021
Diffstat (limited to 'metadata/news/2021-10-08-openssh-rsa-sha1')
-rw-r--r-- | metadata/news/2021-10-08-openssh-rsa-sha1/2021-10-08-openssh-rsa-sha1.en.txt | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/metadata/news/2021-10-08-openssh-rsa-sha1/2021-10-08-openssh-rsa-sha1.en.txt b/metadata/news/2021-10-08-openssh-rsa-sha1/2021-10-08-openssh-rsa-sha1.en.txt new file mode 100644 index 000000000000..cfdcc4a32d38 --- /dev/null +++ b/metadata/news/2021-10-08-openssh-rsa-sha1/2021-10-08-openssh-rsa-sha1.en.txt @@ -0,0 +1,26 @@ +Title: OpenSSH RSA SHA-1 signatures +Author: Mike Gilbert <floppym@gentoo.org> +Posted: 2021-10-08 +Revision: 1 +News-Item-Format: 2.0 +Display-If-Installed: net-misc/openssh + +As of version 8.8, OpenSSH disables RSA signatures using the SHA-1 +hash algorithm by default. This change affects both the client and +server components. + +After upgrading to this version, you may have trouble connecting to +older SSH servers that do not support the newer RSA/SHA-256/SHA-512 +signatures. Support for these signatures was added in OpenSSH 7.2. + +As well, you may have trouble using older SSH clients to connect to a +server running OpenSSH 8.8 or higher. Some older clients do not +automatically utilize the newer hashes. For example, PuTTY before +version 0.75 is affected. + +To resolve these problems, please upgrade your SSH client/server +whereever possible. If this is not feasible, support for the SHA-1 +hashes may be re-enabled using the following config options: + +HostkeyAlgorithms +ssh-rsa +PubkeyAcceptedAlgorithms +ssh-rsa |