diff options
author | Jeff Forcier <jeff@bitprophet.org> | 2017-06-05 19:59:50 -0700 |
---|---|---|
committer | Jeff Forcier <jeff@bitprophet.org> | 2017-06-05 19:59:50 -0700 |
commit | 31f67fa35f3fb72ccf42b01700b191310fe15eae (patch) | |
tree | c0e65df68e59193563c6cc4a21432bcc1e98d373 /sites | |
parent | 9f25a600f1d568be6764ae94717883f5c3ebf6e4 (diff) | |
parent | b14d98e506879e6c3521c6549a3f8b9abd234fda (diff) |
Merge branch '2.1'
Diffstat (limited to 'sites')
-rw-r--r-- | sites/www/changelog.rst | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/sites/www/changelog.rst b/sites/www/changelog.rst index 70126c27..fb99e49b 100644 --- a/sites/www/changelog.rst +++ b/sites/www/changelog.rst @@ -2,6 +2,11 @@ Changelog ========= +* :bug:`900` (via :issue:`911`) Prefer newer ``ecdsa-sha2-nistp`` keys over RSA + and DSA keys during host key selection. This improves compatibility with + OpenSSH, both in terms of general behavior, and also re: ability to properly + leverage OpenSSH-modified ``known_hosts`` files. Credit: ``@kasdoe`` for + original report/PR and Pierce Lopez for the second draft. * :bug:`794` (via :issue:`981`) Prior support for ``ecdsa-sha2-nistp(384|521)`` algorithms didn't fully extend to covering host keys, preventing connection to hosts which only offer these key types and no others. This is now fixed. |