luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
open-vault/website/content/docs/secrets
History
Alexander Scheel f0dc3a553f
Switch to secure signing algorithm for SSH secrets engine (#14006) 
* Explicitly call out SSH algorithm_signer default

Related: #11608

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Use rsa-sha2-256 as the default SSH CA hash algo

As mentioned in the OpenSSH 8.2 release notes, OpenSSH will no longer be
accepting ssh-rsa signatures by default as these use the insecure SHA-1
algorithm.

For roles in which an explicit signature type wasn't specified, we
should change the default from SHA-1 to SHA-256 for security and
compatibility with modern OpenSSH releases.

See also: https://www.openssh.com/txt/release-8.2

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Update docs mentioning new algorithm change

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add changelog entry

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Fix missing parenthesis, clarify new default value

* Add to side bar

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2022-02-18 10:44:01 -05:00
..
databases Add clarification around vague "this" references (#13968) 2022-02-09 13:02:44 -05:00
identity identity/oidc: optional nonce parameter for authorize request (#13231) 2021-11-22 09:42:22 -08:00
key-management secrets/keymgmt: Adds documentation for using Azure Private Link (#13640) 2022-01-13 10:41:05 -08:00
kv KV v2 doc - fix format and update examples (#14003) 2022-02-10 13:20:36 -08:00
ssh Switch to secure signing algorithm for SSH secrets engine (#14006) 2022-02-18 10:44:01 -05:00
transform mysql is also supported for transform external storage (#13104) 2022-02-08 16:40:58 -08:00
ad.mdx plugins/ad: Add rotate-role endpoint (#11942) 2021-06-25 14:00:03 -04:00
alicloud.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
aws.mdx Add clarification around vague "this" references (#13968) 2022-02-09 13:02:44 -05:00
azure.mdx secrets/azure: add doc for rotate-root and AAD migration (#13066) 2021-11-05 13:04:25 -04:00
consul.mdx secret/consul: Add Consul ACL roles support (#14014) 2022-02-16 19:31:08 -06:00
cubbyhole.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
gcp.mdx Update gcp.mdx (#13438) 2022-02-09 12:09:01 -08:00
gcpkms.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
index.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
kmip.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
mongodbatlas.mdx Fix some typos (#12289) 2021-11-15 14:52:04 -05:00
nomad.mdx website: Update text (#13441) 2021-12-16 12:35:55 -05:00
openldap.mdx Fix some typos (#12289) 2021-11-15 14:52:04 -05:00
pki.mdx Add duration/count metrics to PKI issue and revoke flows (#13889) 2022-02-08 10:37:40 -06:00
rabbitmq.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
terraform.mdx Typo: Corrected same typo in 2 locations (on-premise to on-premises) (#13402) 2022-02-07 18:59:46 -05:00
totp.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00
transit.mdx Typo fix: period rotation -> periodic rotation (in transit docs) (#12030) 2021-07-15 08:18:09 -04:00
venafi.mdx feat(website): migrates nav data format and updates docs pages (#11242) 2021-04-06 13:49:04 -04:00