From owner-svn-src-all@freebsd.org  Wed Aug  3 16:34:39 2016
Return-Path: <owner-svn-src-all@freebsd.org>
Delivered-To: svn-src-all@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id D4CECBAE315;
 Wed,  3 Aug 2016 16:34:39 +0000 (UTC) (envelope-from gjb@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
 [IPv6:2001:1900:2254:206c::16:87])
 by mx1.freebsd.org (Postfix) with ESMTP id C5C2C1BC5;
 Wed,  3 Aug 2016 16:34:39 +0000 (UTC) (envelope-from gjb@FreeBSD.org)
Received: from FreeBSD.org (freefall.freebsd.org
 [IPv6:2001:1900:2254:206c::16:87])
 by freefall.freebsd.org (Postfix) with ESMTP id 74798144F;
 Wed,  3 Aug 2016 16:34:39 +0000 (UTC) (envelope-from gjb@FreeBSD.org)
Date: Wed, 3 Aug 2016 16:34:38 +0000
From: Glen Barber <gjb@FreeBSD.org>
To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= <des@FreeBSD.org>
Cc: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-head@freebsd.org
Subject: Re: svn commit: r303716 - head/crypto/openssh
Message-ID: <20160803163438.GM68091@FreeBSD.org>
References: <201608031608.u73G8Mjq055909@repo.freebsd.org>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature"; boundary="m+utxuhC6KVTvgNz"
Content-Disposition: inline
In-Reply-To: <201608031608.u73G8Mjq055909@repo.freebsd.org>
X-Operating-System: FreeBSD 11.0-CURRENT amd64
X-SCUD-Definition: Sudden Completely Unexpected Dataloss
X-SULE-Definition: Sudden Unexpected Learning Event
X-PEKBAC-Definition: Problem Exists, Keyboard Between Admin/Computer
User-Agent: Mutt/1.5.24 (2015-08-30)
X-BeenThere: svn-src-all@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "SVN commit messages for the entire src tree \(except for &quot;
 user&quot; and &quot; projects&quot; \)" <svn-src-all.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-all>,
 <mailto:svn-src-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-all/>
List-Post: <mailto:svn-src-all@freebsd.org>
List-Help: <mailto:svn-src-all-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-all>,
 <mailto:svn-src-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Aug 2016 16:34:39 -0000


--m+utxuhC6KVTvgNz
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Aug 03, 2016 at 04:08:22PM +0000, Dag-Erling Sm=F8rgrav wrote:
> Author: des
> Date: Wed Aug  3 16:08:21 2016
> New Revision: 303716
> URL: https://svnweb.freebsd.org/changeset/base/303716
>=20
> Log:
>   Remove DSA from default cipher list and disable SSH1.
>  =20
>   Upstream did this a long time ago, but we kept DSA and SSH1 in FreeBSD =
for
>   reasons which boil down to POLA.  Now is a good time to catch up.
>  =20
>   MFC after:	3 days
>   Relnotes:	yes
>=20

It might be worth considering doing the MFC before 3 days.  It's still
unclear if we'll need BETA4, but would be nice to have this change in
the next build regardless.

Glen


--m+utxuhC6KVTvgNz
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=osHo
-----END PGP SIGNATURE-----

--m+utxuhC6KVTvgNz--