to /etc/crypto-policies/back-ends/openssh.config.
I have some ecdsa-sha2-nistp256 host key fingerprints in my known_hosts file, but it seems that ssh ignores them since this update. Instead I see the error message, that the host key missmatches and it requests me to add the rsa-sha2-256 key.
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
@catanzaro thanks for the heads up on this - just as a note, it won't be a release blocker unless it makes it to stable, which it shouldn't do if I give it another -1. like this one. :P
This update has been submitted for testing by tmraz.
tmraz edited this update.
New build(s):
Removed build(s):
Karma has been reset.
This update has been pushed to testing.
works for me
This updates adds the line
to
/etc/crypto-policies/back-ends/openssh.config. I have someecdsa-sha2-nistp256host key fingerprints in myknown_hostsfile, but it seems thatsshignores them since this update. Instead I see the error message, that the host key missmatches and it requests me to add thersa-sha2-256key.Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
sedrubal: very nice catch!
Reported upstream: https://gitlab.com/redhat-crypto/fedora-crypto-policies/issues/9
@catanzaro thanks for the heads up on this - just as a note, it won't be a release blocker unless it makes it to stable, which it shouldn't do if I give it another -1. like this one. :P
This update has been obsoleted.