[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freebsd-announce
Subject:    Re: [FreeBSD-Announce] HEADS-UP: OpenSSH DSA keys are deprecated in 12.0 and 11.0
From:       Glen Barber <gjb () FreeBSD ! org>
Date:       2016-08-05 2:09:50
Message-ID: 20160805020950.GJ43509 () FreeBSD ! org
[Download RAW message or body]


On Fri, Aug 05, 2016 at 01:59:18AM +0000, Glen Barber wrote:
> This is a heads-up that OpenSSH keys are deprecated upstream by OpenSSH,
> and will be deprecated effective 11.0-RELEASE (and preceeding RCs).
> 

Stupid editor mistake.  OpenSSH DSA keys are deprecated upstream.  Sorry
for any confusion.

> Please see r303716 for details on the relevant commit, but upstream no
> longer considers them secure.  Please replace DSA keys with ECDSA or RSA
> keys as soon as possible, otherwise there will be issues when upgrading
> from 11.0-BETA4 to the subsequent 11.0 build, but most definitely the
> 11.0-RELEASE build.
> 

Glen
On behalf of:	re@ and secteam@


["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]