Hi, On 28/11/16 07:10, "dtucker@xxxxxxxxxxx on behalf of Darren Tucker" <dtucker@xxxxxxxxxxx on behalf of dtucker@xxxxxxxxxx> wrote: On Mon, Nov 28, 2016 at 5:46 PM, Pedro Melo <melo@xxxxxxxxxxxxxxxx> wrote: > Hi > > On 28/11/16 00:14, "dtucker@xxxxxxxxxxx on behalf of Darren Tucker" <dtucker@xxxxxxxxxxx on behalf of dtucker@xxxxxxxxxx> wrote: [...] > My initial email was not about why DSA was deprecated (although I do appreciate the reasons, thank you), but more about the fact that this deprecation is not mentioned on the OpenSSH release notes, so I would argue that DSA was not in fact deprecated… In the 7.0 release notes: * Support for ssh-dss, ssh-dss-cert-* host and user keys is disabled by default at run-time. These may be re-enabled using the instructions at http://www.openssh.com/legacy.html DSS = Digital Signature Standard, DSA = Digital Signature Algorithm but they refer to the same thing. Given that the SSH standards use ssh-dss, by rights keygen should refer to it as "dss" instead of "dsa" but that ship sailed long ago. Oh, my apologies, I missed that. I searched for DSA only. Thank you, _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev