From mboxrd@z Thu Jan  1 00:00:00 1970
From: =?utf-8?Q?Cl=C3=A9ment?= Lassieur <clement@lassieur.org>
Subject: Re: [PATCH 2/2] services: openssh: Remove deprecated
	'RSAAuthentication' option.
Date: Sat, 18 Feb 2017 19:32:15 +0100
Message-ID: <87k28n1hao.fsf@lassieur.org>
References: <20170217184529.3a610d81@lepiller.eu>
	<20170218114617.6714-1-clement@lassieur.org>
	<20170218114617.6714-2-clement@lassieur.org>
	<8760k7sdw7.fsf@elephly.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Return-path: <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:45216)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <clement@lassieur.org>) id 1cf9ny-00061C-IZ
	for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:23 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <clement@lassieur.org>) id 1cf9nv-00072k-G4
	for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:22 -0500
Received: from mail.lassieur.org ([83.152.10.219]:60840)
	by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
	(Exim 4.71) (envelope-from <clement@lassieur.org>)
	id 1cf9nv-00072T-8S
	for guix-devel@gnu.org; Sat, 18 Feb 2017 13:32:19 -0500
In-reply-to: <8760k7sdw7.fsf@elephly.net>
List-Id: "Development of GNU Guix and the GNU System distribution."
	<guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-devel/>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
To: Ricardo Wurmus <rekado@elephly.net>
Cc: guix-devel@gnu.org

Ricardo Wurmus <rekado@elephly.net> writes:
> Cl=C3=A9ment Lassieur <clement@lassieur.org> writes:
>
>> * gnu/services/ssh.scm (openssh-config-file): Remove it.
>>   (<openssh-configuration>)[rsa-authentication?]: Remove it.
>> * doc/guix.texi (Networking Services): Remove it.
>> ---
>>  doc/guix.texi        | 5 -----
>>  gnu/services/ssh.scm | 5 -----
>>  2 files changed, 10 deletions(-)
>>
>> diff --git a/doc/guix.texi b/doc/guix.texi
>> index 22eef3a64..54d4bab89 100644
>> --- a/doc/guix.texi
>> +++ b/doc/guix.texi
>> @@ -9151,11 +9151,6 @@ false, users have to use other authentication m=
ethod.
>>  Authorized public keys are stored in @file{~/.ssh/authorized_keys}.
>>  This is used only by protocol version 2.
>>
>> -@item @code{rsa-authentication?} (default: @code{#t})
>> -When true, users may log in using pure RSA authentication.  When fals=
e,
>> -users have to use other means of authentication.  This is used only b=
y
>> -protocol 1.
>> -
>
> Is it still possible to make SSH use protocol 1 or has this feature
> disappeared?  If it is still possible I think we should not remove this
> option.

Quote from https://www.openssh.com/releasenotes.html (about OpenSSH
7.4/7.4p1, which is the one we use):

    * This release removes server support for the SSH v.1 protocol.

So I think it is not possible anymore.