2715 – for more flexibility, please support a comma ',' separated list of patterns to add to/remove from the defaults

Bug 2715 - for more flexibility, please support a comma ',' separated list of patterns to add to/remove from the defaults

Summary: for more flexibility, please support a comma ',' separated list of patterns t...

Status:	CLOSED WONTFIX

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	sshd (show other bugs)
Version:	7.5p1
Hardware:	Other Linux

Importance:	P5 enhancement
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2017-05-08 20:34 AEST by Cristian Ionescu-Idbohrn
Modified:	2021-04-23 15:02 AEST (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Cristian Ionescu-Idbohrn 2017-05-08 20:34:20 AEST

What I'm thinking of would look like this:

Macs=-umac-64*,-hmac-sha1*


Cheers,

-- 
Cristian

Comment 1 Cristian Ionescu-Idbohrn 2017-05-08 20:57:10 AEST

By accident, I just discovered a list of this form:

Macs=-umac-64*,hmac-sha1*

is supported (the '-' operates on the whole list).

This form:

Macs=-umac-64*,-hmac-sha1*

('-' in front of each pattern) is not supported.

Ideally, a mix like this:

Macs=-umac-64*,+foo*,-hmac-sha1*

offers the best flexibility, IMO.


Cheers,

-- 
Cristian

Comment 2 Damien Miller 2017-05-16 02:08:46 AEST

I don't think extra flexibility is worth the complexity needed to implement it. If you have a need to select algorithms that goes beyond simply adding or removing some from the default set then it's easy just to specify the list.

Comment 3 Damien Miller 2021-04-23 15:02:27 AEST

closing resolved bugs as of 8.6p1 release