From owner-freebsd-security Fri Jul 26 10: 7:41 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F2BE737B400 for ; Fri, 26 Jul 2002 10:07:39 -0700 (PDT) Received: from smtp2.enst.fr (matrix2.enst.fr [137.194.2.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 31E7743E4A for ; Fri, 26 Jul 2002 10:07:39 -0700 (PDT) (envelope-from cedric.ware@enst.fr) Received: from olympe.enst.fr (olympe.enst.fr [137.194.64.54]) by smtp2.enst.fr (Postfix) with ESMTP id AA0371EF04; Fri, 26 Jul 2002 19:07:34 +0200 (MEST) Received: by olympe.enst.fr (Postfix, from userid 14110) id 90830110CF; Fri, 26 Jul 2002 19:07:36 +0200 (CEST) Date: Fri, 26 Jul 2002 19:07:36 +0200 From: Cedric Ware To: Dag-Erling Smorgrav Cc: freebsd-security@freebsd.org Subject: Re: ssh host key inconsistency Message-ID: <20020726170736.GA16312@enst.fr> References: <20020726135837.A7551@chiark.greenend.org.uk> <20020726145249.B7551@chiark.greenend.org.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > According to the draft standard, RSA is deprecated and DSA is the > preferred cipher. Do you have any references for this? I have looked through http://www.ietf.org/html.charters/secsh-charter.html, but I must have missed it. > There's also a POLA issue; previous FreeBSD > releases have used only DSA, and enabling RSA would cause spurious > "unknown host key" warnings Indeed. (Although I am somewhat in the reverse situation, not being a FreeBSD-only user...) Thank you, Cedric Ware. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message