[
https://issues.apache.org/jira/browse/SSHD-1255?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17517670#comment-17517670
]
Thomas Wolf commented on SSHD-1255:
-----------------------------------
Moreover, the server-side handler is not adapted for RSA SHA2 signatures.
OpenSSH uses the signature type negotiated in KEX if the host key used there
was an RSA key. (I suppose if the last host key was not an RSA key, the
assumption is that the server will not offer an RSA key in key rotation.) An
Apache MINA sshd server always uses ssh-rsa.
> Support host key update and rotation in the client
> --------------------------------------------------
>
> Key: SSHD-1255
> URL: https://issues.apache.org/jira/browse/SSHD-1255
> Project: MINA SSHD
> Issue Type: Improvement
> Affects Versions: 2.8.0
> Reporter: Thomas Wolf
> Priority: Major
>
> Add support for the {{[email protected]}} and
> {{[email protected]}} KEX extensions, including updating
> {{known_hosts}}.
> See https://github.com/openssh/openssh-portable/blob/807be6868/PROTOCOL#L286 .
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
