ssh_authkey_fingerprints must use sha256 not md5
Bug #1860789 reported by
Dimitri John Ledkov
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cloud-init |
Fix Released
|
Undecided
|
Unassigned | ||
cloud-init (Ubuntu) |
Fix Released
|
Undecided
|
Ryan Harper |
Bug Description
ssh_authkey_
on focal and up.
or maybe you should show both, becuase old ssh clients might only show md5 checksums, and like ssh clients on Windows, etc.
If you switch to show both, it then can be backported to all stable releases, as md5 is no longer secure for this purpose.
CVE References
To post a comment you must log in.
ssh-add manpage has
-E fingerprint_hash
Specifies the hash algorithm used when displaying key fingerprints. Valid options are: “md5” and “sha256”. The default is “sha256”.