Bug 58428 - review password hashes - Ubuntu clients will discontinue arcfour support
Summary: review password hashes - Ubuntu clients will discontinue arcfour support
Status: NEW
Alias: None
Product: UCS
Classification: Unclassified
Component: UDM (Generic)
Version: UCS 5.2
Hardware: Other Linux
: P5 normal
Target Milestone: ---
Assignee: UMC maintainers
QA Contact: UMC maintainers
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2025-06-27 10:27 CEST by Ingo Steuwer
Modified: 2025-09-16 12:49 CEST (History)
1 user (show)

See Also:
What kind of report is it?: Bug Report
What type of bug is this?: 4: Minor Usability: Impairs usability in secondary scenarios
Who will be affected by this bug?: 2: Will only affect a few installed domains
How will those affected feel about the bug?: 2: A Pain – users won’t like this once they notice it
User Pain: 0.091
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ingo Steuwer univentionstaff 2025-06-27 10:27:55 CEST 
Ubuntu 24.04 clients report this warning if authenticated against an UCS LDAP, for example during graphical login (AFAIK LDM) as well as "sudo" on the command line:

Warning: encryption type arcfour-hmac used for authentication is deprecated and will be disabled

We need to:
- ensure that we provide hashing algorithms which are future proof for Ubuntu Desktops
- remove obsolete hases (see also #42976 and #42949)