diff options
author | djm@openbsd.org <djm@openbsd.org> | 2019-05-20 00:20:35 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2019-05-20 10:21:58 +1000 |
commit | 476e3551b2952ef73acc43d995e832539bf9bc4d (patch) | |
tree | 326f23ca0f27d7fd4242ce88892d0af9a2da2c3c /xmss_hash.h | |
parent | 606077ee1e77af5908431d003fb28461ef7be092 (diff) |
upstream: When signing certificates with an RSA key, default to
using the rsa-sha2-512 signature algorithm. Certificates signed by RSA keys
will therefore be incompatible with OpenSSH < 7.2 unless the default is
overridden.
Document the ability of the ssh-keygen -t flag to override the
signature algorithm when signing certificates, and the new default.
ok deraadt@
OpenBSD-Commit-ID: 400c9c15013978204c2cb80f294b03ae4cfc8b95
Diffstat (limited to 'xmss_hash.h')
0 files changed, 0 insertions, 0 deletions