upstream/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2026-02-19 02:49:18 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 7
vault/website/content/docs
History
Alexander Scheel 67e49339ec
Switch to secure signing algorithm for SSH secrets engine (#14006) 
* Explicitly call out SSH algorithm_signer default

Related: #11608

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Use rsa-sha2-256 as the default SSH CA hash algo

As mentioned in the OpenSSH 8.2 release notes, OpenSSH will no longer be
accepting ssh-rsa signatures by default as these use the insecure SHA-1
algorithm.

For roles in which an explicit signature type wasn't specified, we
should change the default from SHA-1 to SHA-256 for security and
compatibility with modern OpenSSH releases.

See also: https://www.openssh.com/txt/release-8.2

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Update docs mentioning new algorithm change

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add changelog entry

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Fix missing parenthesis, clarify new default value

* Add to side bar

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2022-02-18 10:44:01 -05:00
..
agent Add telemetry to Vault agent (#13675) 2022-02-17 17:10:26 -08:00
audit Documentation update: Added tuner parameters to the Sensitive information section (#12655) 2021-09-28 11:44:46 -07:00
auth auth/ldap: add resp warning if userfilter doesn't consider userattr (#14095) 2022-02-17 17:19:44 -08:00
commands Document vault write JSON request parameters (#14087) 2022-02-17 10:07:41 -05:00
concepts changed to upper-case for integrated storage (#14037) 2022-02-14 08:38:06 -08:00
configuration Vault documentation: added new warning to listener stanza parameters (#14036) 2022-02-14 08:54:43 -08:00
deprecation [Doc Assembly Branch] Vault 1.9 release (#12944) 2021-11-15 18:02:36 -08:00
enterprise changed to upper-case for integrated storage (#14037) 2022-02-14 08:38:06 -08:00
get-started Vault documentation: created new developer quick start guide (#14038) 2022-02-16 15:25:36 -08:00
internals Typo and clarity fixes (#14081) 2022-02-15 10:43:49 -08:00
platform changed to upper-case for integrated storage (#14037) 2022-02-14 08:38:06 -08:00
release-notes Updated spelling (#13751) 2022-01-24 14:38:13 -08:00
secrets Switch to secure signing algorithm for SSH secrets engine (#14006) 2022-02-18 10:44:01 -05:00
upgrading Switch to secure signing algorithm for SSH secrets engine (#14006) 2022-02-18 10:44:01 -05:00
browser-support.mdx Vault documentation: added a warning message to vault ui browser support doc (#13961) 2022-02-09 09:10:24 -08:00
glossary.mdx Vault Documentation: Added Glossary (#12324) 2021-08-16 13:08:44 -07:00
index.mdx Implement MDX Remote (#10581) 2020-12-17 16:53:33 -05:00
install.mdx Documentation consistency GPG keys are PGP keys. (#13073) 2021-11-08 10:04:59 -08:00
partnerships.mdx Vault Integration Program Update (#14031) 2022-02-15 11:19:51 -08:00
plugin-portal.mdx Revert "MFA (#14049)" (#14135) 2022-02-17 13:17:59 -07:00
plugin.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
use-cases.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
what-is-vault.mdx added link to hcpv docs (#13992) 2022-02-09 16:15:17 -08:00