-
Notifications
You must be signed in to change notification settings - Fork 1
Unconditionally filters ciphers #17
Comments
Mhh, i do not understand. Nothing is blocked by default. |
generating a list of ciphers while filtering nothing (the default setting) is IMHO useless and means upgrading will never bring better ciphers unless this role is applied at the same time. |
In fact upgrading just break the world:
I'd like to be able to disable this feature. As I already said the distro must be fixed and this is gonna be a pain to maintain. |
so, what kind of upgrade was it ? |
So, that's a upgrade from some debian version to another debian version, but so that mean there is a bug. The code is not supposed to change anything unless there is a filtered cipher, and by default, nothing is filtered. If this did result in filtering something (and so changing the configuration) while you didn't ask for it, that's not the behavior that was supposed to happen. |
It seems indeed that this was a bug. I guess this broke after 2.8 upgrade, as it was fine when I tested. |
While I think the new feature is useful, having ciphers locked-up independently of openssh version changes while you did not request for such feature to be enabled, is IMHO a problem.
The text was updated successfully, but these errors were encountered: