[Bug 2959] Disabling just rsa-sha2-512 breaks public key authentication

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Dec 7 03:30:00 AEDT 2024


https://bugzilla.mindrot.org/show_bug.cgi?id=2959

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |FIXED
             Status|NEW                         |RESOLVED

--- Comment #2 from Damien Miller <djm at mindrot.org> ---
We implemented a protocol extension to fix this in OpenSSH 9.5:

 * ssh(1), sshd(8): introduce a protocol extension to allow
   renegotiation of acceptable signature algorithms for public key
   authentication after the server has learned the username being
   used for authentication. This allows varying sshd_config(5)
   PubkeyAcceptedAlgorithms in a "Match user" block.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list