Control: tags -1 + confirmed On Tue, 2022-04-12 at 09:40 -0300, Antonio Terceiro wrote: > OpenSSH 8.8 disables RSA signatures using the SHA-1 hash algorithm, > and > that breaks clients that do not support stronger algorithms, which is > the case of the ruby-net-ssh version in bullseye. > > [ Impact ] > Users of vagrant and capistrano, for example, are not able to connect > to hosts running OpenSSH 8.8, which includes Debian bookworm but also > other distributions where OpenSSH 8.8. is already available. > [...] > The patches are backports of the relevant upstream patches. The first > adds support for client authentication with RSA + SHA-2. The second > adds > support for RSA+SHA-2 in host keys. >
Please go ahead. Regards, Adam
