HEADS-UP: OpenSSH DSA keys are deprecated in 12.0 and 11.0
Glen Barber
gjb at FreeBSD.org
Fri Aug 5 02:09:52 UTC 2016
On Fri, Aug 05, 2016 at 01:59:18AM +0000, Glen Barber wrote:
> This is a heads-up that OpenSSH keys are deprecated upstream by OpenSSH,
> and will be deprecated effective 11.0-RELEASE (and preceeding RCs).
>
Stupid editor mistake. OpenSSH DSA keys are deprecated upstream. Sorry
for any confusion.
> Please see r303716 for details on the relevant commit, but upstream no
> longer considers them secure. Please replace DSA keys with ECDSA or RSA
> keys as soon as possible, otherwise there will be issues when upgrading
> from 11.0-BETA4 to the subsequent 11.0 build, but most definitely the
> 11.0-RELEASE build.
>
Glen
On behalf of: re@ and secteam@
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20160805/26d018b7/attachment.sig>
More information about the freebsd-stable
mailing list