Thank-you Ed, for providing a window for discussion. As much as I strongly agree with Dave Cottlehuber , there is sadly a pragmatic dimension. So, off by default goes some way to improve the world, but folk do appear to need to be able to connect to "antique" equipment that they have no mechanism to upgrade (perhaps call for an ISO27001 audit? ;) ). We really don't want to loose FreeBSDers for this.
Minor point - your ssh command line was helpful as it confirmed connectivity to an older FreeBSD9.1 system (still in use from 2014) using ed25519, and finally, to clarify that putty 0.75 (from May 2021) uses rsa-sha256; current version is 0.76, per https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html _______________________________________________ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
