Bug#774711: recommendations for changing openssh defaults

To: 774711@bugs.debian.org
Subject: Bug#774711: recommendations for changing openssh defaults
From: Matt Taggart <taggart@debian.org>
Date: Mon, 12 Oct 2015 21:25:57 -0700
Message-id: <[🔎] 20151013042557.3034A203@taggart.lackof.org>
Reply-to: Matt Taggart <taggart@debian.org>, 774711@bugs.debian.org

Given the recent news about advances in causing SHA1 collisions, I think 
it's even more important for openssh to start not accepting known weak 
crypto (including sha1) by default.

  https://sites.google.com/site/itstheshappening/

I don't see any upstream bugs about this. Should this bug be forwarded? Or 
maybe separate bugs should be filed for MD5, SHA1, NIST, etc?

Thanks,

-- 
Matt Taggart
taggart@debian.org

Reply to:

Prev by Date: Bug#801530: openssh-client: Segfault on malformed keys - possible security impact)
Next by Date: Bug#774711: recommendations for changing openssh defaults
Previous by thread: Bug#801530: segfault is null-pointer dereference
Next by thread: Bug#774711: recommendations for changing openssh defaults
Index(es):
- Date
- Thread