[Bug 3322] Switch SSHFP default digest to SHA256

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Jul 16 22:52:09 AEST 2021


Darren Tucker <dtucker at dtucker.net> changed:

           What    |Removed                     |Added
                 CC|                            |djm at mindrot.org
   Attachment #3539|                            |ok?(djm at mindrot.org)
              Flags|                            |

--- Comment #2 from Darren Tucker <dtucker at dtucker.net> ---
Created attachment 3539
  --> https://bugzilla.mindrot.org/attachment.cgi?id=3539&action=edit
Simplify verify_host_key_dns() and verify all fingerprints

I think this is what it should do: verify all fingerprint types present
in DNS.  If any fail to verify the overall check fails.

You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list