[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Removing DSS and other unreasonable algorithms (Was: Missing signed-off for pkg chacha20 patches)
[Thread Prev] | [Thread Next]
- Subject: Removing DSS and other unreasonable algorithms (Was: Missing signed-off for pkg chacha20 patches)
- From: Jakub Jelen <jjelen@xxxxxxxxxx>
- Reply-to: libssh@xxxxxxxxxx
- Date: Tue, 19 Jun 2018 16:35:49 +0200
- To: libssh@xxxxxxxxxx
On Thu, 2018-06-14 at 16:03 +0200, Andreas Schneider wrote: > [...] > > Looks like openssh removed support for ssh-dss. At least my openssh > 7.7 > doesn't know about it at all. The OpenSSH 7.7p1 still has the support for ssh-dss keys, but they are disabled by default for any use, unless you enable them using PubkeyAcceptedKeyTypes and friend configuration options. The reason why it is still there is probably because the DSA keys are mandatory part (REQUIRED) of RFC4253 (Section 6.6). > I would remove it from libssh after the release of 0.8 together with > SSHv1 > support. > > I think we can remove it from pkd already? Comments? Removing the ancient SSHv1, blowfish and other unreasonable algorithms makes sense for me. Regards, -- Jakub Jelen Software Engineer Security Technologies Red Hat, Inc.
| Re: Removing DSS and other unreasonable algorithms (Was: Missing signed-off for pkg chacha20 patches) | "Richard W.M. Jones" <rjones@xxxxxxxxxx> |
| Re: Removing DSS and other unreasonable algorithms (Was: Missing signed-off for pkg chacha20 patches) | Andreas Schneider <asn@xxxxxxxxxxxxxx> |
| Missing signed-off for pkg chacha20 patches | Andreas Schneider <asn@xxxxxxxxxxxxxx> |
| Re: Missing signed-off for pkg chacha20 patches | Jon Simons <jon@xxxxxxxxxxxxx> |
| Re: Missing signed-off for pkg chacha20 patches | Andreas Schneider <asn@xxxxxxxxxxxxxx> |
| Re: Missing signed-off for pkg chacha20 patches | Andreas Schneider <asn@xxxxxxxxxxxxxx> |