Re: Heads-up: DSA key support being removed from OpenSSH

In reply to: void : "Re: Heads-up: DSA key support being removed from OpenSSH"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Christian Weisgerber <naddy_at_mips.inka.de>
Date: Sun, 11 May 2025 16:10:35 UTC

void:

> +1 to this. Just the client. Maybe call it openssh-vuln?
> 
> I can appreciate it being removed in base, in server. But there's
> lots of otherwise-working gear around that only uses
> ssh-dss or ssh-rsa. We only need the client.

ssh-rsa, i.e. RSA keys with a signature algorithm that uses SHA-1,
is still supported in the latest OpenSSH, even if disabled by
default.

-- 
Christian "naddy" Weisgerber                          naddy@mips.inka.de