On Sat, 2022-06-11 at 15:48 -0400, Jeffrey Ross via users wrote:
I keep running into an issue with PuTTy users logging into the
system (Fedora 35), I found that if I edit:
/usr/share/crypto-policies/DEFAULT/opensshserver.txt and add ^ssh-rsa
at the beginning of the PubkeyAcceptedAlgorithms list will allow
users to login again, however anytime there is an update to the
crypto stuff on the system my change gets wiped out.
So my questions are
1) which file should I be updating so my changes aren't removed all
the time
2) is adding ^ssh-rsa the best change or is there a better or more
proper one? (I can't get rid of putty, but would like to take the
least evil fix)
There should be an /etc file that you can customise. Files outside of
there (like inside /usr) will be managed by package installations
themselves, as you've found out.
If there isn't an /etc file, it's probably looking for one and using a
default /usr... one when it doesn't succeed.
--
uname -rsvp
Linux 3.10.0-1160.66.1.el7.x86_64 #1 SMP Wed May 18 16:02:34 UTC 2022 x86_64
Boilerplate: All unexpected mail to my mailbox is automatically deleted.
I will only get to see the messages that are posted to the mailing list.