Re: OpenSSH update

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenSSH update

From:	Ludovic Courtès
Subject:	Re: OpenSSH update
Date:	Tue, 01 Mar 2016 21:52:04 +0100
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)

Leo Famulari <address@hidden> skribis:

> OpenSSH has released a new version, 7.2p1:
> http://www.openssh.com/txt/release-7.2
>
> There are some new features and many fixed bugs.
>
> Here are the incompatible changes, copied from the link above. If there
> are no objections I will apply the update.
>
> Potentially-incompatible changes
> ================================
>
> This release disables a number of legacy cryptographic algorithms
> by default in ssh:
>
>  * Several ciphers blowfish-cbc, cast128-cbc, all arcfour variants
>     and the rijndael-cbc aliases for AES.
>
>      * MD5-based and truncated HMAC algorithms.
>
>      These algorithms are already disabled by default in sshd.

Sounds reasonable to me.

Thanks!

Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

OpenSSH update, Leo Famulari, 2016/03/01
- Re: OpenSSH update, Ludovic Courtès <=

Prev by Date: Re: bug#22831: OpenSSL should not depend on Perl
Next by Date: OpenSSL “DROWN” vulnerability & grafts
Previous by thread: OpenSSH update
Next by thread: Re: bug#22831: OpenSSL should not depend on Perl
Index(es):
- Date
- Thread