[Bug 2506] CA-signed keys broken
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Sat Nov 28 11:24:04 AEDT 2015
https://bugzilla.mindrot.org/show_bug.cgi?id=2506
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |WONTFIX
--- Comment #1 from Damien Miller <djm at mindrot.org> ---
The server in question is offering the legacy certificate format that
was removed in OpenSSH 7.0
> debug2: kex_parse_kexinit: ssh-rsa,ssh-rsa-cert-v00 at openssh.com,ssh-dss
The legacy keys haven't been the default since OpenSSH 5.6.
The remote version (OpenSSH 6.0) supports the current cert format fine,
so regenerating your certificates should get you working.
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list