Page MenuHomePhabricator

Disable ssh-rsa (sha1) keys by default
Closed, ResolvedPublic

Description

Disable ssh-rsa (sha1) keys by default.

The better alternatives include:

  • The RFC8332 RSA SHA-2 signature algorithms rsa-sha2-256/512.
  • The ssh-ed25519 signature algorithm.

Event Timeline

asn created this task.Feb 14 2020, 12:43 PM
Jakuje closed this task as Resolved.Apr 21 2020, 5:18 PM

The previously mentioned commit disables the RSA-SHA1 and DSA algorithms by default.