Enforcing sha2 algorithm in ssh-keygen.c
Dmitry Belyavskiy
dbelyavs at redhat.com
Fri Jan 20 22:55:15 AEDT 2023
Dear colleagues,
ssh-keygen uses SHA1 algorithm (default) when verifying that the key is
usable. It causes problems on recent systems where SHA1 is disabled for use
with signatures (at least, RHEL 9+).
The proposed patch enforces using a sha2 algorithm for key verification.
--
Dmitry Belyavskiy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ssh-keygen.patch
Type: text/x-patch
Size: 1217 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20230120/ffe3d6e1/attachment.bin>
More information about the openssh-unix-dev
mailing list