[Bug 3213] openssh 8.3p1 will not use any type of RSA key for legacy servers if ssh-rsa is not in PubkeyAcceptedKeyTypes

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Sep 30 01:33:44 AEST 2020


https://bugzilla.mindrot.org/show_bug.cgi?id=3213

Jakub Jelen <jjelen at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jjelen at redhat.com

--- Comment #2 from Jakub Jelen <jjelen at redhat.com> ---
Please, have a look to the description in the following comment:

https://bugzilla.redhat.com/show_bug.cgi?id=1881301#c27

I believe this is a bug only in OpenSSH 7.4p1, which is in Debian 9 and
which is the only version that reports wrong server-sig-algs in the
extension. This means, either long-shot to fix this in Debian 9 (by
mostly reverting [1] as we did in RHEL7), the another long shot is
implement a compat fix for this particular openssh version in upstream
(not sure if it is worth it for that old release, but Debian 9 is still
quite common).

[1] https://github.com/openssh/openssh-portable/commit/130f5d

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list