[Bug 3351] RSA SHA256 certificates no longer work

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Oct 8 11:42:43 AEDT 2021


https://bugzilla.mindrot.org/show_bug.cgi?id=3351

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |WONTFIX
             Status|NEW                         |RESOLVED
            Version|8.8p1                       |7.4p1

--- Comment #4 from Damien Miller <djm at mindrot.org> ---
The problem here is the server, not the client. OpenSSH 7.4 has a
number of bugs relating to RSA-SHA2 algorithm advertisements.

These are mostly worked around in newer versions for plain keys but we
don't do the same for certificates because the compatibility code would
be pretty ugly. It's better to simply upgrade the server to a less-old
release.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list