bugzilla-daemon at mindrot.org
2024-Jun-13 07:19 UTC
[Bug 3701] New: KexAlgorithms documentation is unclear as to default vs. supported distinction
https://bugzilla.mindrot.org/show_bug.cgi?id=3701 Bug ID: 3701 Summary: KexAlgorithms documentation is unclear as to default vs. supported distinction Product: Portable OpenSSH Version: 9.7p1 Hardware: All OS: All Status: NEW Severity: minor Priority: P5 Component: Documentation Assignee: unassigned-bugs at mindrot.org Reporter: cjwatson at debian.org Created attachment 3818 --> https://bugzilla.mindrot.org/attachment.cgi?id=3818&action=edit Clarify KexAlgorithms documentation In https://bugs.debian.org/1073065, I had a user confused about the meaning of the KexAlgorithms documentation. I think this is because it uses "available" in two different senses (the list that a client makes available to the server, and the list that's available for configuration in the client), and because of a confusing use of the word "also" that suggests that the list shown by "ssh -Q kex" is the same as the default proposal when it isn't. The attached patch should help. -- You are receiving this mail because: You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2024-Jun-14 05:08 UTC
[Bug 3701] KexAlgorithms documentation is unclear as to default vs. supported distinction
https://bugzilla.mindrot.org/show_bug.cgi?id=3701 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED CC| |djm at mindrot.org Blocks| |3674 Status|NEW |RESOLVED --- Comment #1 from Damien Miller <djm at mindrot.org> --- Thanks, I've gone with a slightly different wording in https://anongit.mindrot.org/openssh.git/commit/?id=dd7807bbe80a93ffb4616f2bd5cf83ad5a5595fb Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=3674 [Bug 3674] Tracking bug for OpenSSH 9.8 -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.
Maybe Matching Threads
- Patch: Ciphers, MACs and KexAlgorithms on Match
- [Bug 2333] New: forbid old Ciphers, KexAlgorithms and MACs by default
- [Bug 3184] New: Unable to add deprecated KexAlgorithms back for host via config file
- enable strong KexAlgorithms, Ciphers and MACs in /etc/ssh/sshd_config file on RHEL 8.x Linux OS
- [Bug 3674] New: Tracking bug for OpenSSH 9.8