Free software activity in April 2025
OpenSSH 10.0 (and a request for help), dput-ng, and more.
Showing only posts tagged openssh. Show all posts.
Launchpad now supports SSH Ed25519 keys and RSA SHA-2 signatures
As of 2022-02-16, Launchpad supports a couple of features on its SSH
endpoints (git.launchpad.net, bazaar.launchpad.net, ppa.launchpad.net,
and upload.ubuntu.com) that it previously didn’t: Ed25519 public
keys (a well-regarded format,
supported by OpenSSH since 6.5 in 2014) and signatures with existing RSA …
SSH quoting
A while back there was a thread on one of our company mailing lists about SSH quoting, and I posted a long answer to it. Since then a few people have asked me questions that caused me to reach for it, so I thought it might be helpful if I …
SSH SHA-2 support in Twisted
Launchpad operates a few SSH endpoints: bazaar.launchpad.net and
git.launchpad.net for code hosting, and upload.ubuntu.com and
ppa.launchpad.net for uploading packages. None of these are
straightforward OpenSSH servers, because they don’t give ordinary shell
access and they authenticate against users’ SSH keys recorded …
OpenSSH 6.0p1
OpenSSH 6.0p1 was released a little while back; this weekend I belatedly got round to uploading packages of it to Debian unstable and Ubuntu quantal.
I was a bit delayed by needing to put together an improvement to privsep sandbox selection that particularly matters in the context of distributions …
OpenSSH 5.5p1 for Lucid
For various reasons, I chose to leave Ubuntu 10.04 LTS using OpenSSH 5.3p1. The new features in 5.4p1 such as certificate authentication, the new smartcard handling, netcat mode, and tab-completion in sftp are great, but unfortunately it was available just a little bit too late for me …
Don’t use sshkeygen.com to generate keys!
To my horror, I recently saw this online SSH key generator.
I hope nobody reading this needs to be told why this is a bad idea. However, in case you do, here are a few reasons:
- Every SSH implementation I know of - certainly all the major ones - that support public …
Moving conffiles between packages, redux
I spent far too much of today cleaning up an upgrade bug to do with conffiles, which I suspect also affects other packages that have attempted to work around dpkg conffile prompts when moving conffiles between packages. If you maintain such a package, please review your code to make sure …
Forwarding bugs to the IETF
Sometimes following up on a bug takes you a lot further than you expected. Debian bug #337041 looked like it was going to be fairly straightforward once I upgraded coreutils to figure out what the new IUTF8 flag actually did, since the SSH2 protocol already supports transferring termios flags around …