GNU bug report logs - #44887
openssh service creates DSA keys

Please note: This is a static page, with minimal formatting, updated once a day.
Click here to see this page with the latest information and nicer formatting.

Package: guix; Reported by: Efraim Flashner <efraim@HIDDEN>; Keywords: security; dated Thu, 26 Nov 2020 15:16:02 UTC; Maintainer for guix is bug-guix@HIDDEN.
Added tag(s) security. Request was from Ludovic Courtès <ludo@HIDDEN> to control <at> debbugs.gnu.org. Full text available.

Message received at submit <at> debbugs.gnu.org:


Received: (at submit) by debbugs.gnu.org; 26 Nov 2020 15:15:15 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Nov 26 10:15:15 2020
Received: from localhost ([127.0.0.1]:42440 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1kiIzL-0001c6-FY
	for submit <at> debbugs.gnu.org; Thu, 26 Nov 2020 10:15:15 -0500
Received: from lists.gnu.org ([209.51.188.17]:49486)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <efraim@HIDDEN>) id 1kiIzG-0001bv-Rj
 for submit <at> debbugs.gnu.org; Thu, 26 Nov 2020 10:15:13 -0500
Received: from eggs.gnu.org ([2001:470:142:3::10]:46596)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <efraim@HIDDEN>)
 id 1kiIzG-0000x8-Ka
 for bug-guix@HIDDEN; Thu, 26 Nov 2020 10:15:10 -0500
Received: from flashner.co.il ([178.62.234.194]:35690)
 by eggs.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <efraim@HIDDEN>) id 1kiIzE-0006m1-W5
 for bug-guix@HIDDEN; Thu, 26 Nov 2020 10:15:10 -0500
Received: from localhost (unknown [141.226.15.169])
 by flashner.co.il (Postfix) with ESMTPSA id F01D640479
 for <bug-guix@HIDDEN>; Thu, 26 Nov 2020 15:14:35 +0000 (UTC)
Date: Thu, 26 Nov 2020 17:14:03 +0200
From: Efraim Flashner <efraim@HIDDEN>
To: bug-guix@HIDDEN
Subject: openssh service creates DSA keys
Message-ID: <X7/GO+ALqt1y1ji6@E5400>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha512;
 protocol="application/pgp-signature"; boundary="ZOZzjInjKeOBEuCU"
Content-Disposition: inline
X-PGP-Key-ID: 0x41AAE7DCCA3D8351
X-PGP-Key: https://flashner.co.il/~efraim/efraim_flashner.asc
X-PGP-Fingerprint: A28B F40C 3E55 1372 662D  14F7 41AA E7DC CA3D 8351
Received-SPF: pass client-ip=178.62.234.194;
 envelope-from=efraim@HIDDEN; helo=flashner.co.il
X-Spam_score_int: -18
X-Spam_score: -1.9
X-Spam_bar: -
X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, SPF_HELO_PASS=-0.001,
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-Spam-Score: -1.3 (-)
X-Debbugs-Envelope-To: submit
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -2.3 (--)


--ZOZzjInjKeOBEuCU
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

In the interest of protecting users we should probably not create DCA
keys by default. That would leave us with RSA, ECDSA and ED25519.

--=20
Efraim Flashner   <efraim@HIDDEN>   =D7=90=D7=A4=D7=A8=D7=99=D7=9D =
=D7=A4=D7=9C=D7=A9=D7=A0=D7=A8
GPG key =3D A28B F40C 3E55 1372 662D  14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted

--ZOZzjInjKeOBEuCU
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=+zFL
-----END PGP SIGNATURE-----

--ZOZzjInjKeOBEuCU--




Acknowledgement sent to Efraim Flashner <efraim@HIDDEN>:
New bug report received and forwarded. Copy sent to bug-guix@HIDDEN. Full text available.
Report forwarded to bug-guix@HIDDEN:
bug#44887; Package guix. Full text available.
Please note: This is a static page, with minimal formatting, updated once a day.
Click here to see this page with the latest information and nicer formatting.
Last modified: Thu, 3 Dec 2020 17:15:01 UTC

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997 nCipher Corporation Ltd, 1994-97 Ian Jackson.