Enforcing sha2 algorithm in ssh-keygen.c
Dmitry Belyavskiy
dbelyavs at redhat.com
Fri Mar 3 21:04:56 AEDT 2023
Dear colleagues,
Could you please take a look?
On Fri, Jan 20, 2023 at 12:55 PM Dmitry Belyavskiy <dbelyavs at redhat.com> wrote:
>
> Dear colleagues,
>
> ssh-keygen uses SHA1 algorithm (default) when verifying that the key is usable. It causes problems on recent systems where SHA1 is disabled for use with signatures (at least, RHEL 9+).
>
> The proposed patch enforces using a sha2 algorithm for key verification.
>
> --
> Dmitry Belyavskiy
--
Dmitry Belyavskiy
More information about the openssh-unix-dev
mailing list