bugzilla-daemon at mindrot.org
2014-Oct-10 02:41 UTC
[Bug 2290] New: documentation of algorithms
https://bugzilla.mindrot.org/show_bug.cgi?id=2290
Bug ID: 2290
Summary: documentation of algorithms
Product: Portable OpenSSH
Version: 6.7p1
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P5
Component: Documentation
Assignee: unassigned-bugs at mindrot.org
Reporter: calestyo at scientia.net
Hi.
1) in sshd_config(5):
"rijndael-cbc at lysator.liu.se" seems to be missing from the list of
supported algos for the Ciphers directive.
"hmac-ripemd160 at openssh.com" for the MACs directive.
(If that's a synonym to hmac-ripemd160 it should probably be documented
as well.)
2) in sshd_config(5):
The Ciphers directive contains the text:> The list of available ciphers may also be obtained using the -Q
> option of ssh(1).
a) I guess this should perhaps be changed to:
?-Q cipher? respectively ?-Q cipher-auth?
b) The directives KexAlgorithms and MACs, which correspond to Ciphers,
and for which there is also a respective -Q option, completely miss
that part and it should be given as well.
The same should probably be done for the directive HostKeyAlgorithms in
ssh_config(5).
Cheers,
Chris.
--
You are receiving this mail because:
You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2014-Oct-10 04:00 UTC
[Bug 2290] documentation of algorithms
https://bugzilla.mindrot.org/show_bug.cgi?id=2290 --- Comment #1 from Christoph Anton Mitterer <calestyo at scientia.net> --- Partially fixed in https://github.com/openssh/openssh-portable/pull/5 The:>(If that's a synonym to hmac-ripemd160 >it should probably be documented as well.)is still open, though. -- You are receiving this mail because: You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2014-Dec-22 09:07 UTC
[Bug 2290] documentation of algorithms
https://bugzilla.mindrot.org/show_bug.cgi?id=2290
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
Blocks| |2266
Resolution|--- |FIXED
Status|NEW |RESOLVED
--- Comment #2 from Damien Miller <djm at mindrot.org> ---
fixed; will be in openssh-6.8
commit 8f6784f0cb56dc4fd00af3e81a10050a5785228d
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Dec 22 09:05:17 2014 +0000
upstream commit
mention ssh -Q feature to list supported { MAC, cipher,
KEX, key } algorithms in more places and include the query string
used to
list the relevant information; bz#2288
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at mindrot.org
2015-Mar-18 07:16 UTC
[Bug 2290] documentation of algorithms
https://bugzilla.mindrot.org/show_bug.cgi?id=2290
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
openssh-6.8 is released
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
Possibly Parallel Threads
- [Bug 2288] New: documentation of options defaulting to "none"
- Fwd: [Cryptography] Why aren’t we using SSH for everything?
- Debian Stretch 9.6: openssh-server and old dropbear client don't work togheter
- [Bug 2287] New: AuthorizedKeysCommandUser should have it's default documented
- [Bug 2333] New: forbid old Ciphers, KexAlgorithms and MACs by default