[Bug 3029] New: keyscan does not list rsa keys if the ssh-rsa is not allowed on server

bugzilla-daemon Tue, 02 Jul 2019 03:48:15 -0700

https://bugzilla.mindrot.org/show_bug.cgi?id=3029


            Bug ID: 3029
           Summary: keyscan does not list rsa keys if the ssh-rsa is not
                    allowed on server
           Product: Portable OpenSSH
           Version: 8.0p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh-keyscan
          Assignee: [email protected]
          Reporter: [email protected]

Created attachment 3294
  --> https://bugzilla.mindrot.org/attachment.cgi?id=3294&action=edit
proposed patch

the keyscan is forcing ssh-rsa signature algorithm when scanning for
rsa keys and if ssh-rsa (SHA1 variant) is not allowed on server, no RSA
keys is returned.

The attached patch extends the signature algorithms to offer also the
SHA2 variants (and certificate SHA2 variants) so the keyscan can work
as expected.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
[email protected]
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 3029] New: keyscan does not list rsa keys if the ssh-rsa is not allowed on server

Reply via email to