svn commit: r303716 - head/crypto/openssh
Andrey Chernov
ache at freebsd.org
Sun Aug 7 22:31:44 UTC 2016
On 08.08.2016 0:28, Andrey Chernov wrote:
> On 08.08.2016 0:20, Warner Losh wrote:
>>
>>> On Aug 7, 2016, at 3:11 PM, Andrey Chernov <ache at freebsd.org> wrote:
>>>
>>>> OTOH, FreeBSD has a documented deprecation process that says things will
>>>> continue working for a major release after being formally deprecated.
>>>
>>> FreeBSD 11 is not released yet (betas are not counted), stable-10 too,
>>> so it is right time to deprecate for them.
>>
>> Nice try, but feature freeze was months ago. Have you got buy in from the
>> security officer and the release engineer?
>>
>> I didn’t think so...
>
> I must confess I don't track when feature freeze happens, so this is
> upon to re@ team to decide for 11. I am still right about stable-10 at
> least.
BTW, as I just check, commit for stable-11
drop SSH1 support, disable DSA by default
was
Approved by: re (gjb)
You may ask re@ is it intentional or overlook. Minimum DH size increased
to 2048 and turning off DH 1024 diffie-hellman-group1-sha1 happens much
earlier, about year ago.
More information about the svn-src-all
mailing list