OpenSSH 7.0 Potentially Incompatible Changes August 16, 2015 04:49PM |
Admin Registered: 13 years ago Posts: 19,102 |
Quote
Potentially-incompatible Changes
--------------------------------
* Support for the legacy SSH version 1 protocol is disabled by
default at compile time.
* Support for the 1024-bit diffie-hellman-group1-sha1 key exchange
is disabled by default at run-time. It may be re-enabled using
the instructions at http://www.openssh.com/legacy.html
* Support for ssh-dss, ssh-dss-cert-* host and user keys is disabled
by default at run-time. These may be re-enabled using the
instructions at http://www.openssh.com/legacy.html
* Support for the legacy v00 cert format has been removed.
* The default for the sshd_config(5) PermitRootLogin option has
changed from "yes" to "prohibit-password".
* PermitRootLogin=without-password/prohibit-password now bans all
interactive authentication methods, allowing only public-key,
hostbased and GSSAPI authentication (previously it permitted
keyboard-interactive and password-less authentication if those
were enabled).
Re: OpenSSH 7.0 Potentially Incompatible Changes August 16, 2015 11:07PM |
Registered: 14 years ago Posts: 264 |
Re: OpenSSH 7.0 Potentially Incompatible Changes August 17, 2015 02:10AM |
Admin Registered: 13 years ago Posts: 19,102 |