From 6847d9223420fb86cdf72f0e608a5f41a2673053 Mon Sep 17 00:00:00 2001
From: Hans Nilsson <hans@erlang.org>
Date: Thu, 19 Jan 2017 17:19:37 +0100
Subject: ssh: removed 'ssh-dss' from default list

Reason: insecure
---
 lib/ssh/src/ssh_transport.erl | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'lib/ssh/src/ssh_transport.erl')

diff --git a/lib/ssh/src/ssh_transport.erl b/lib/ssh/src/ssh_transport.erl
index d172005a85..7a01f9926c 100644
--- a/lib/ssh/src/ssh_transport.erl
+++ b/lib/ssh/src/ssh_transport.erl
@@ -84,6 +84,11 @@ default_algorithms(kex) ->
                                'diffie-hellman-group1-sha1' % Gone in OpenSSH 7.3.p1
                               ]);
 
+default_algorithms(public_key) ->
+    supported_algorithms(public_key, [
+                                      'ssh-dss' % Gone in OpenSSH 7.3.p1
+                                     ]);
+
 default_algorithms(cipher) ->
     supported_algorithms(cipher, same(['AEAD_AES_128_GCM',
 				       'AEAD_AES_256_GCM']));
-- 
cgit v1.2.3