[savannah-help-public] [sr #110004] Please publicize the fact the ssh-ds

savannah-hackers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[savannah-help-public] [sr #110004] Please publicize the fact the ssh-ds

From:	Bob Proulx
Subject:	[savannah-help-public] [sr #110004] Please publicize the fact the ssh-dss keys don't work any more
Date:	Sat, 14 Sep 2019 18:52:07 -0400 (EDT)
User-agent:	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.75 Safari/537.36

Update of sr #110004 (project administration):

                  Status:                    None => Done                   
             Assigned to:                    None => rwp                    
             Open/Closed:                    Open => Closed                 

    _______________________________________________________

Follow-up Comment #1:

I am sorry you missed seeing our notifications!  Where should we have sent
those notifications so that you would have seen them?

Are you subscribed to the savannah-users mailing list?  That is a low volume
mailing list for Savannah users to discuss using Savannah.  Please subscribe
if you are not.  I think it is probably the best place to keep up with changes
and other happenings.  The deprecation of DSA keys was posted there at the
time of the change.

  https://lists.gnu.org/archive/html/savannah-users/2019-06/msg00018.html

Do you look at the Savannah web home page?  The top news item on the home page
is still the deprecation warning of DSA keys.

  https://savannah.gnu.org/

Savannah has always recommended against using DSA keys due to the weakenesses
of them.  Here is the documentation on why they were advised against.  But has
previously accepted them anyway.

  https://savannah.gnu.org/maintenance/SshAccess/

The upstream OpenSSH project is deprecating DSA keys.  As we upgrade the
systems we are simply following their lead and not re-enabling them.

  http://www.openssh.com/legacy.html "OpenSSH 7.0 and greater similarly
disable the ssh-dss (DSA) public key algorithm.  It too is weak and we
recommend against its use."

At this moment the cvs system is running a newer version of the OS which
includes OpenSSH 7.4p1 while the git system is still running the older OS
version with OpenSSH 6.6.1p1 but it will also be upgraded at some point in the
near future.


    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/support/?110004>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[savannah-help-public] [sr #110004] Please publicize the fact the ssh-dss keys don't work any more, Bruno Haible, 2019/09/14
- [savannah-help-public] [sr #110004] Please publicize the fact the ssh-dss keys don't work any more, Bob Proulx <=

Prev by Date: [savannah-help-public] [sr #110004] Please publicize the fact the ssh-dss keys don't work any more
Next by Date: [savannah-help-public] [sr #110009] TeXmacs wont open anymore
Previous by thread: [savannah-help-public] [sr #110004] Please publicize the fact the ssh-dss keys don't work any more
Next by thread: [savannah-help-public] [sr #110009] TeXmacs wont open anymore
Index(es):
- Date
- Thread