Univention Bugzilla – Full Text Bug Listing |
Summary: | univention-ssh: Disable SSHv1 and DSA Keys | ||
---|---|---|---|
Product: | UCS | Reporter: | Michael Grandjean <grandjean> |
Component: | Security updates | Assignee: | Philipp Hahn <hahn> |
Status: | CLOSED FIXED | QA Contact: | Daniel Tröder <troeder> |
Severity: | normal | ||
Priority: | P5 | CC: | birkefeld, gohmann, requate, walkenhorst |
Version: | UCS 4.0 | ||
Target Milestone: | UCS 4.0-3-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | Security | |
Max CVSS v3 score: | |||
Attachments: | svn diff of my changes that disable SSHv1, the DSA and RSA1 Keys and removes obsolete "ServerKeyBits" and "KeepAlive" |
Description
Michael Grandjean
2015-06-15 12:44:47 CEST
r63286 | Bug #38709 ssh: Make ssh keys configurable r63281 | Bug #38709 ssh: Make ssh keys configurable RSA1 and DSA disabled by default, ecdsa enabled Only existing keys are included. KeepAlive -> TCPKeepAlive ServerKeyBits only issued when Protocols=1 is still used. sshd/Protocol=2 sshd/HostKey sshd/ServerKeyBits sshd/TCPKeepAlive Package: univention-base-files Version: 4.0.8-7.194.201508271117 Branch: ucs_4.0-0 Scope: errata4.0-3 Package: univention-base-files Version: 5.0.0-1.193.201508271117 Branch: ucs_4.1-0 r63291 | Bug #38609,Bug #38709,Bug #38710,Bug #38711: ssh 2015-08-27-univention-base-files.yaml OK: code OK: 4.1 merge OK: YAML OK: manual test of UCRVs sshd/{Protocol, HostKey, ServerKeyBits, TCPKeepAlive} |