Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenSSH DSA keys deprecated in FreeBSD 11

    Off-Topic & Non-Support Discussion
    3
    3
    1.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      Harvy66
      last edited by

      https://lists.freebsd.org/pipermail/freebsd-announce/2016-August/001737.html

      Since PFSense is going FreeBSD 11 with 2.4, I think, I assume this will also apply here.

      1 Reply Last reply Reply Quote 0
      • K
        kpa
        last edited by

        This is going to bite some people for sure but in all honesty if you are bitten you haven't followed the news in recent years. The DSA public key crypto has been known to be faulty by design for at least four or five years now.

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          We have generated them in a while and we stopped using them completely in 2.3.2. So if you're on 2.3.2 and working fine, you're ahead of the curve.

          Only a few people have had issues that we've seen. Most all of them easily solved by a client software upgrade or tweak in the settings.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post