DSA signature support removed from OpenSSH

Contributed by rueda on 2025-05-06 from the it's all dead at the D-S-A dept.

Damien Miller (djm@) has completed the planned [See previous articles] removal of DSA signature support from OpenSSH:

CVSROOT:	/cvs
Module name:	src
Changes by:	djm@cvs.openbsd.org	2025/05/05 23:40:56

Modified files:
	usr.bin/ssh    : sshkey.h sshkey.c sshd.c sshd-session.c 
	                 sshd-auth.c sshconnect.c ssh_config ssh.c 
	                 ssh-keysign.c ssh-keyscan.c ssh-keygen.c 
	                 ssh-add.c readconf.c pathnames.h hostfile.c 
	                 dns.c authfile.c authfd.c PROTOCOL 
Removed files:
	usr.bin/ssh    : ssh-dss.c 

Log message:
finally remove DSA signature support from OpenSSH.

feedback/ok tb@, ok deraadt@

The editors would like to encourage our readers to arrange a proper wake for this one.
Please keep going until we can be quadruply sure it's all gone.

Latest Articles

Thu, May 08
- 12:24 Optimisation of parallel TCP input (0)
Wed, May 07
- 11:38 bpflogd(8) imported into -current (0)
- 04:57 LLDP daemon and tool committed to -current (0)
- 01:09 DSA signature support removed from OpenSSH (0)
Tue, May 06
- 05:42 Call for testing: Last bits of DSA to be removed from OpenSSH (0)
- 04:46 ssh: listener sockets relocated from /tmp to ~/.ssh/agent (0)
- 01:21 The installer now prefers disks over 1GB (0)
Fri, May 02
- 06:00 Call for testing and comment: Make the installer prefer >1G disks (0)
Wed, Apr 30
- 18:44 Call for Testing: Parallel fault handler (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]