Important note for future FreeBSD base system OpenSSH update
Dewayne Geraghty
dewayne at heuristicsystems.com.au
Tue Sep 14 01:07:48 UTC 2021
Thank-you Ed, for providing a window for discussion.
As much as I strongly agree with Dave Cottlehuber , there is sadly a
pragmatic dimension. So, off by default goes some way to improve the
world, but folk do appear to need to be able to connect to "antique"
equipment that they have no mechanism to upgrade (perhaps call for an
ISO27001 audit? ;) ). We really don't want to loose FreeBSDers for this.
Minor point - your ssh command line was helpful as it confirmed
connectivity to an older FreeBSD9.1 system (still in use from 2014)
using ed25519, and finally, to clarify that putty 0.75 (from May 2021)
uses rsa-sha256; current version is 0.76, per
https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
More information about the freebsd-security
mailing list