[openssh-commits] [openssh] 01/01: upstream: RSA/SHA-1 is not used by default anymore

git+noreply at mindrot.org git+noreply at mindrot.org
Sun Sep 26 21:22:54 AEST 2021


This is an automated email from the git hooks/post-receive script.

djm pushed a commit to branch master
in repository openssh.

commit d39039ddc0010baa91c70a0fa0753a2699bbf435
Author: kn at openbsd.org <kn at openbsd.org>
Date:   Sat Sep 25 09:40:33 2021 +0000

    upstream: RSA/SHA-1 is not used by default anymore
    
    OK dtucker deraadt djm
    
    OpenBSD-Commit-ID: 055c51a221c3f099dd75c95362f902da1b8678c6
---
 ssh_config.5 | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/ssh_config.5 b/ssh_config.5
index 9d60887e..170125a0 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -33,8 +33,8 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: ssh_config.5,v 1.365 2021/09/15 06:56:01 djm Exp $
-.Dd $Mdocdate: September 15 2021 $
+.\" $OpenBSD: ssh_config.5,v 1.366 2021/09/25 09:40:33 kn Exp $
+.Dd $Mdocdate: September 25 2021 $
 .Dt SSH_CONFIG 5
 .Os
 .Sh NAME
@@ -879,12 +879,11 @@ sk-ssh-ed25519-cert-v01 at openssh.com,
 sk-ecdsa-sha2-nistp256-cert-v01 at openssh.com,
 rsa-sha2-512-cert-v01 at openssh.com,
 rsa-sha2-256-cert-v01 at openssh.com,
-ssh-rsa-cert-v01 at openssh.com,
 ssh-ed25519,
 ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
 sk-ssh-ed25519 at openssh.com,
 sk-ecdsa-sha2-nistp256 at openssh.com,
-rsa-sha2-512,rsa-sha2-256,ssh-rsa
+rsa-sha2-512,rsa-sha2-256
 .Ed
 .Pp
 The
@@ -926,12 +925,11 @@ sk-ssh-ed25519-cert-v01 at openssh.com,
 sk-ecdsa-sha2-nistp256-cert-v01 at openssh.com,
 rsa-sha2-512-cert-v01 at openssh.com,
 rsa-sha2-256-cert-v01 at openssh.com,
-ssh-rsa-cert-v01 at openssh.com,
 ssh-ed25519,
 ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
 sk-ecdsa-sha2-nistp256 at openssh.com,
 sk-ssh-ed25519 at openssh.com,
-rsa-sha2-512,rsa-sha2-256,ssh-rsa
+rsa-sha2-512,rsa-sha2-256
 .Ed
 .Pp
 If hostkeys are known for the destination host then this default is modified
@@ -1509,12 +1507,11 @@ sk-ssh-ed25519-cert-v01 at openssh.com,
 sk-ecdsa-sha2-nistp256-cert-v01 at openssh.com,
 rsa-sha2-512-cert-v01 at openssh.com,
 rsa-sha2-256-cert-v01 at openssh.com,
-ssh-rsa-cert-v01 at openssh.com,
 ssh-ed25519,
 ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
 sk-ssh-ed25519 at openssh.com,
 sk-ecdsa-sha2-nistp256 at openssh.com,
-rsa-sha2-512,rsa-sha2-256,ssh-rsa
+rsa-sha2-512,rsa-sha2-256
 .Ed
 .Pp
 The list of available signature algorithms may also be obtained using

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.


More information about the openssh-commits mailing list