summaryrefslogtreecommitdiffhomepage
path: root/sites
diff options
context:
space:
mode:
authorJeff Forcier <jeff@bitprophet.org>2017-06-05 19:59:50 -0700
committerJeff Forcier <jeff@bitprophet.org>2017-06-05 19:59:50 -0700
commit31f67fa35f3fb72ccf42b01700b191310fe15eae (patch)
treec0e65df68e59193563c6cc4a21432bcc1e98d373 /sites
parent9f25a600f1d568be6764ae94717883f5c3ebf6e4 (diff)
parentb14d98e506879e6c3521c6549a3f8b9abd234fda (diff)
Merge branch '2.1'
Diffstat (limited to 'sites')
-rw-r--r--sites/www/changelog.rst5
1 files changed, 5 insertions, 0 deletions
diff --git a/sites/www/changelog.rst b/sites/www/changelog.rst
index 70126c27..fb99e49b 100644
--- a/sites/www/changelog.rst
+++ b/sites/www/changelog.rst
@@ -2,6 +2,11 @@
Changelog
=========
+* :bug:`900` (via :issue:`911`) Prefer newer ``ecdsa-sha2-nistp`` keys over RSA
+ and DSA keys during host key selection. This improves compatibility with
+ OpenSSH, both in terms of general behavior, and also re: ability to properly
+ leverage OpenSSH-modified ``known_hosts`` files. Credit: ``@kasdoe`` for
+ original report/PR and Pierce Lopez for the second draft.
* :bug:`794` (via :issue:`981`) Prior support for ``ecdsa-sha2-nistp(384|521)``
algorithms didn't fully extend to covering host keys, preventing connection
to hosts which only offer these key types and no others. This is now fixed.