From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?utf-8?Q?Cl=C3=A9ment?= Lassieur Subject: Re: [PATCH 2/2] services: openssh: Remove deprecated 'RSAAuthentication' option. Date: Sat, 18 Feb 2017 19:32:15 +0100 Message-ID: <87k28n1hao.fsf@lassieur.org> References: <20170217184529.3a610d81@lepiller.eu> <20170218114617.6714-1-clement@lassieur.org> <20170218114617.6714-2-clement@lassieur.org> <8760k7sdw7.fsf@elephly.net> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:45216) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1cf9ny-00061C-IZ for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:23 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1cf9nv-00072k-G4 for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:22 -0500 Received: from mail.lassieur.org ([83.152.10.219]:60840) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1cf9nv-00072T-8S for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:19 -0500 In-reply-to: <8760k7sdw7.fsf@elephly.net> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Ricardo Wurmus Cc: guix-devel@gnu.org Ricardo Wurmus writes: > Cl=C3=A9ment Lassieur writes: > >> * gnu/services/ssh.scm (openssh-config-file): Remove it. >> ()[rsa-authentication?]: Remove it. >> * doc/guix.texi (Networking Services): Remove it. >> --- >> doc/guix.texi | 5 ----- >> gnu/services/ssh.scm | 5 ----- >> 2 files changed, 10 deletions(-) >> >> diff --git a/doc/guix.texi b/doc/guix.texi >> index 22eef3a64..54d4bab89 100644 >> --- a/doc/guix.texi >> +++ b/doc/guix.texi >> @@ -9151,11 +9151,6 @@ false, users have to use other authentication m= ethod. >> Authorized public keys are stored in @file{~/.ssh/authorized_keys}. >> This is used only by protocol version 2. >> >> -@item @code{rsa-authentication?} (default: @code{#t}) >> -When true, users may log in using pure RSA authentication. When fals= e, >> -users have to use other means of authentication. This is used only b= y >> -protocol 1. >> - > > Is it still possible to make SSH use protocol 1 or has this feature > disappeared? If it is still possible I think we should not remove this > option. Quote from https://www.openssh.com/releasenotes.html (about OpenSSH 7.4/7.4p1, which is the one we use): * This release removes server support for the SSH v.1 protocol. So I think it is not possible anymore.