You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As part of continuous effort to comply with security guidelines and to harden our product security, the Akamai NetStorage ObjectStore platform will be removing support for older, weaker key signing algorithms from the SSH upload services. Once removed, SSH-based clients that do not support newer key-signing algorithms will fail to connect to NetStorage.
Details
As part of Akamai’s ongoing process for ensuring platform security, support for known weak key signing algorithms on NetStorage will be removed from SSH-based upload services (SSH, SCP, SFTP, RSYNC/SSH, Aspera).
We are upgrading the SSH version on the server side, which will disable all algorithms which use SHA1, including the signature algorithm ssh-rsa-sha1, originally the only signature algorithm used by ssh-rsa keys. RFC 8332 defined a mechanism by which ssh-rsa keys can negotiate the signature algorithm used, allowing users with ssh-rsa keys to use ssh-rsa-sha2-256 or ssh-rsa-sha2-512.
Next Steps
If you are using any of the following SSH-based clients you must upgrade to a version that is equal or newer to the one listed below:
• OpenSSH >= 7.2
• Putty >= .79
• libssh2 >= 1.11
• Aspera Desktop Client >= 4.4.3
If you are not using any of these clients, no action is required.
The text was updated successfully, but these errors were encountered:
Hello,
Can someone confirm if this module is still going to work following the ongoing Akamai SSH upgrade?
https://community.akamai.com/customers/s/article/May-2024-NetStorage-SSH-Upgrade
Excerpt:
Dear Customer,
As part of continuous effort to comply with security guidelines and to harden our product security, the Akamai NetStorage ObjectStore platform will be removing support for older, weaker key signing algorithms from the SSH upload services. Once removed, SSH-based clients that do not support newer key-signing algorithms will fail to connect to NetStorage.
Details
As part of Akamai’s ongoing process for ensuring platform security, support for known weak key signing algorithms on NetStorage will be removed from SSH-based upload services (SSH, SCP, SFTP, RSYNC/SSH, Aspera).
We are upgrading the SSH version on the server side, which will disable all algorithms which use SHA1, including the signature algorithm ssh-rsa-sha1, originally the only signature algorithm used by ssh-rsa keys. RFC 8332 defined a mechanism by which ssh-rsa keys can negotiate the signature algorithm used, allowing users with ssh-rsa keys to use ssh-rsa-sha2-256 or ssh-rsa-sha2-512.
Next Steps
If you are using any of the following SSH-based clients you must upgrade to a version that is equal or newer to the one listed below:
• OpenSSH >= 7.2
• Putty >= .79
• libssh2 >= 1.11
• Aspera Desktop Client >= 4.4.3
If you are not using any of these clients, no action is required.
The text was updated successfully, but these errors were encountered: