bugzilla-daemon at bugzilla.mindrot.org
2015-Dec-18 13:14 UTC
[Bug 2519] New: Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Bug ID: 2519
Summary: Obsolete SSHv1 config options
Product: Portable OpenSSH
Version: 7.1p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: ssh
Assignee: unassigned-bugs at mindrot.org
Reporter: jjelen at redhat.com
When building openssh without support for SSHv1 protocol, we should
obsolete options that are effective only for this protocol. The manual
pages are long, people tend to ignore the notes in manual pages (or
manual pages overall) and are wondering "why it does not work" (for
example Cipher option [1]). It applies for both client and server
config options.
There are few ways how to do this, either put the whole options into
#ifdef, or make them "oUnsupported". Or create some transition
Obsolete
warning that would not fail
The same end should be given to their description in manual pages, but
it would require some pre-processing (not sure about the most clean
way).
This is quite last missing piece of SSHv1 support in current release. I
didn't find any place where it is tracked, except my last note in bug
#2513. Also without patch, but I can create some, if you let me know
that you are interested in such change.
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1281705
--
You are receiving this mail because:
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2016-Jul-08 04:50 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
Blocks| |2594
--- Comment #1 from Damien Miller <djm at mindrot.org> ---
We'll take a look at these after the openssh-7.3 release when we start
removing the SSHv1 code properly.
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2594
[Bug 2594] Tracking bug for OpenSSH 7.4 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2016-Dec-16 03:31 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2647
--- Comment #2 from Damien Miller <djm at mindrot.org> ---
OpenSSH 7.4 release is closing; punt the bugs to 7.5
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2647
[Bug 2647] Tracking bug for OpenSSH 7.5 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2016-Dec-16 03:33 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2594 |
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2594
[Bug 2594] Tracking bug for OpenSSH 7.4 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Feb-10 02:30 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
I've put the remaining options into #ifdef and generally tidied up
SSHv1 options here:
commit 381a2615a154a82c4c53b787f4a564ef894fe9ac
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Jan 30 00:38:50 2017 +0000
upstream commit
small cleanup post SSHv1 removal:
remove SSHv1-isms in commented examples
reorder token table to group deprecated and compile-time
conditional tokens
better
fix config dumping code for some compile-time conditional options
that
weren't being correctly skipped (SSHv1 and PKCS#11)
Upstream-ID: f2e96b3cb3158d857c5a91ad2e15925df3060105
That just leaves the manual bits.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Jun-30 03:43 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2698
--- Comment #4 from Damien Miller <djm at mindrot.org> ---
Move incomplete bugs to openssh-7.6 target since 7.5 shipped a while
back.
To calibrate expectations, there's little chance all of these are going
to make 7.6.
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2698
[Bug 2698] Tracking bug for OpenSSH 7.6 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Jun-30 03:44 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519 --- Comment #5 from Damien Miller <djm at mindrot.org> --- remove 7.5 target -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Jun-30 03:45 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2647 |
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2647
[Bug 2647] Tracking bug for OpenSSH 7.5 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Jun-30 04:51 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Darren Tucker <dtucker at zip.com.au> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |FIXED
CC| |dtucker at zip.com.au
--- Comment #6 from Darren Tucker <dtucker at zip.com.au> ---
Now that the SSH1 code is gone I think this is resolved. Certainly the
one referred to in the upstream bug (Cipher) is gone. If there are any
that we missed we will happily delete them.
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at mindrot.org
2021-Apr-23 05:08 UTC
[Bug 2519] Obsolete SSHv1 config options
https://bugzilla.mindrot.org/show_bug.cgi?id=2519
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
--- Comment #7 from Damien Miller <djm at mindrot.org> ---
closing resolved bugs as of 8.6p1 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
Reasonably Related Threads
- [Bug 2453] New: Document authentication method "none" for AuthenticationMethods
- [Bug 2397] New: Match block doesn't match negated addresses
- [Bug 2576] New: ssh-agent enters busy loop when running out of fds
- [Bug 2501] New: VerifyHostKeyDNS & StrictHostKeyChecking
- [Bug 2439] New: New sha256-base64 SSH Fingerprints in openssh-6.8