On Wed, Jun 28, 2017 at 08:06:53PM -0600, Bob Proulx wrote: > > * The old vcs RSA and DSA keys are only 1024 bits. That is too short > these days. ... > We could decide to invalidate the old 1024 RSA host keys and force > everyone into this problem now. Invalidating the old 1024 bit RSA > keys would force the issue upon everyone all at once.
Correction: upon everyone who doesn't use the ECC keys yet. > It would be > similarly to smacking everyone with a cast iron frying pan. If those keys are inadequate, they should be dropped. it looks like some users start having issues with the current configuration, anyway.
signature.asc
Description: Digital signature
