openssh/README.SUSE

There are following changes in default settings of ssh client and server:

* Accepting and sending of locale environment variables in protocol 2 is
  enabled.

* PAM authentication is enabled and mostly even required, do not turn it off.

* In SLE15, root authentiation with password is enabled by default
  (PermitRootLogin yes).
  NOTE: this has security implications and is only done in order to not change
  behaviour of the server in an update. We strongly suggest setting this option
  either "prohibit-password" or even better to "no" (which disables direct
  remote root login entirely).

* DSA authentication is enabled by default for maximum compatibility.
  NOTE: do not use DSA authentication since it is being phased out for a reason
  - the size of DSA keys is limited by the standard to 1024 bits which cannot
  be considered safe any more.

* Accepting all RFC4419 specified DH group parameters. See KexDHMin in
  ssh_config and sshd_config manual pages.

For more information on differences in SUSE OpenSSH package see README.FIPS
- Update to openssh 9.9p1: * No changes for askpass, see main package changelog for details. - Update to openssh 9.9p1: = Future deprecation notice * OpenSSH plans to remove support for the DSA signature algorithm in early 2025. This release disables DSA by default at compile time. DSA, as specified in the SSHv2 protocol, is inherently weak - being limited to a 160 bit private key and use of the SHA1 digest. Its estimated security level is only 80 bits symmetric equivalent. OpenSSH has disabled DSA keys by default since 2015 but has retained run-time optional support for them. DSA was the only mandatory-to-implement algorithm in the SSHv2 RFCs, mostly because alternative algorithms were encumbered by patents when the SSHv2 protocol was specified. This has not been the case for decades at this point and better algorithms are well supported by all actively-maintained SSH implementations. We do not consider the costs of maintaining DSA in OpenSSH to be justified and hope that removing it from OpenSSH can accelerate its wider deprecation in supporting cryptography libraries. = Potentially-incompatible changes * ssh(1): remove support for pre-authentication compression. OpenSSH has only supported post-authentication compression in the server for some years. Compression before authentication significantly increases the attack surface of SSH servers and risks creating oracles that reveal information about information sent during authentication. OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=275 2024-09-25 10:42:29 +02:00			`There are following changes in default settings of ssh client and server:`

			`* Accepting and sending of locale environment variables in protocol 2 is`
			`enabled.`

			`* PAM authentication is enabled and mostly even required, do not turn it off.`

			`* In SLE15, root authentiation with password is enabled by default`
			`(PermitRootLogin yes).`
			`NOTE: this has security implications and is only done in order to not change`
			`behaviour of the server in an update. We strongly suggest setting this option`
			`either "prohibit-password" or even better to "no" (which disables direct`
			`remote root login entirely).`

			`* DSA authentication is enabled by default for maximum compatibility.`
			`NOTE: do not use DSA authentication since it is being phased out for a reason`
			`- the size of DSA keys is limited by the standard to 1024 bits which cannot`
			`be considered safe any more.`

			`* Accepting all RFC4419 specified DH group parameters. See KexDHMin in`
			`ssh_config and sshd_config manual pages.`

			`For more information on differences in SUSE OpenSSH package see README.FIPS`