Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add support for RFC 8308 Extension Negotiation #1481

Open
Rob-Hague opened this issue Sep 1, 2024 · 0 comments
Open

Add support for RFC 8308 Extension Negotiation #1481

Rob-Hague opened this issue Sep 1, 2024 · 0 comments

Comments

@Rob-Hague
Copy link
Collaborator

We should add support for RFC8308 extension negotation, and primarily, the server-sig-algs extension.

Currently, we always try to authenticate RSA keys first with ssh-rsa (SHA-1) because otherwise certain servers are prone to misbehaving - see #1283 and related discussions. With the server-sig-algs extension implemented, we can know upfront which algorithms the server will accept and we can e.g. save a signature round-trip in the case that the server will not accept ssh-rsa.

There may be some more extensions worth supporting in https://github.com/openssh/openssh-portable/blob/master/PROTOCOL

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant