-
-
Notifications
You must be signed in to change notification settings - Fork 5.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disable DSA ssh keys by default #13056
Conversation
OpenSSH has disabled DSA keys since version 7.0 As the docker runs openssh > v7.0 we should just disable DSA keys by default. Refers to go-gitea#11417 Signed-off-by: Andrew Thornton <art27@cantab.net>
We could just go even further and disable DSA keys by default for Gitea |
Signed-off-by: Andrew Thornton <art27@cantab.net>
Signed-off-by: Andrew Thornton <art27@cantab.net>
Signed-off-by: Andrew Thornton <art27@cantab.net>
Codecov Report
@@ Coverage Diff @@
## master #13056 +/- ##
==========================================
+ Coverage 42.59% 42.63% +0.03%
==========================================
Files 672 672
Lines 73785 73787 +2
==========================================
+ Hits 31428 31458 +30
+ Misses 37260 37233 -27
+ Partials 5097 5096 -1
Continue to review full report at Codecov.
|
Tests need updating TestAddReadOnlyDeployKey |
OpenSSH has disabled DSA keys since version 7.0
DSA keys are considered insecure - we should therefore disable these by default. This means we need to turn on minimum key size checks by default too.
Fix #11417
Signed-off-by: Andrew Thornton art27@cantab.net