[Bug 3546] New: Use SHA2 in ssh-keygen key verification
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Sat Mar 4 04:52:27 AEDT 2023
https://bugzilla.mindrot.org/show_bug.cgi?id=3546
Bug ID: 3546
Summary: Use SHA2 in ssh-keygen key verification
Product: Portable OpenSSH
Version: 8.7p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: ssh-keygen
Assignee: unassigned-bugs at mindrot.org
Reporter: dbelyavs at redhat.com
Created attachment 3681
--> https://bugzilla.mindrot.org/attachment.cgi?id=3681&action=edit
Proposed fix
ssh-keygen uses SHA1 algorithm (default) when verifying that the key is
usable. It causes problems on recent systems where SHA1 is disabled for
use with signatures (at least, RHEL 9+).
The proposed patch enforces using a sha2 algorithm for key
verification.
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list