Launchpad SSH services should support SHA-2
Bug #1445619 reported by
Joey Stanford
This bug affects 7 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Fix Released
|
High
|
Colin Watson | ||
lazr.sshserver |
Fix Released
|
High
|
Colin Watson | ||
turnip |
Fix Released
|
High
|
Colin Watson | ||
txpkgupload |
Fix Released
|
High
|
Colin Watson |
Bug Description
With respect to bzr+ssh using LP, it appears that the strongest crypto LP supports is a KEX of diffie-
LP servers should be updated to support something akin to these MACs:
<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>
and these KEX:
<email address hidden>
Related branches
lp:~cjwatson/lazr.sshserver/moduli
- William Grant: Approve (code)
-
Diff: 98 lines (+22/-4)3 files modifiedsrc/lazr/sshserver/NEWS.txt (+6/-0)
src/lazr/sshserver/service.py (+15/-3)
src/lazr/sshserver/version.txt (+1/-1)
lp:~cjwatson/launchpad/twisted-13.0.0-p2
- William Grant (community): Approve (code)
-
Diff: 61 lines (+12/-6)3 files modifieddaemons/sftp.tac (+3/-2)
lib/lp/services/config/schema-lazr.conf (+3/-0)
versions.cfg (+6/-4)
tags: | added: codehosting-ssh security ssh |
Changed in launchpad: | |
importance: | Undecided → High |
status: | New → Triaged |
information type: | Private Security → Public Security |
summary: |
- Launchpad should support SHA2 + Launchpad SSH services should support SHA2 |
summary: |
- Launchpad SSH services should support SHA2 + Launchpad SSH services should support SHA-2 |
Changed in lazr.sshserver: | |
status: | Triaged → In Progress |
Changed in launchpad: | |
status: | Triaged → In Progress |
Changed in turnip: | |
status: | Triaged → In Progress |
Changed in txpkgupload: | |
status: | Triaged → In Progress |
tags: |
added: qa-ok removed: qa-needstesting |
Changed in turnip: | |
status: | In Progress → Fix Committed |
Changed in txpkgupload: | |
status: | In Progress → Fix Committed |
Changed in txpkgupload: | |
status: | Fix Committed → Fix Released |
Changed in turnip: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
This is entirely blocked on twisted.conch improvements upstream. Some relevant bugs:
https:/ /twistedmatrix. com/trac/ ticket/ 5350 /twistedmatrix. com/trac/ ticket/ 7672 /twistedmatrix. com/trac/ ticket/ 7717
https:/
https:/