Add entry on OpenSSH 6.7 Ciphers change

author: Bryan Drewery <bdrewery@FreeBSD.org> 2014-12-18 16:17:08 +0000
committer: Bryan Drewery <bdrewery@FreeBSD.org> 2014-12-18 16:17:08 +0000
commit: 13c5cf53a034475571dd2895743ae9ee2fcbfd04 (patch)
tree: 16a9af533d5537f99f0f5f13b1bc3bf0deac91b8 /UPDATING
parent: 60b705aaf61bbcb068552a1160bf4a1f22ea97c9 (diff)
download: ports-13c5cf53a034475571dd2895743ae9ee2fcbfd04.tar.gz
ports-13c5cf53a034475571dd2895743ae9ee2fcbfd04.zip
1 files changed, 11 insertions, 0 deletions
diff --git a/UPDATING b/UPDATING
index b1f9e7cf7cae..6c1298cfe65a 100644
--- a/UPDATING
+++ b/UPDATING
@@ -5,6 +5,17 @@ they are unavoidable.
 You should get into the habit of checking this file for changes each time
 you update your ports collection, before attempting any port upgrades.
 
+20141218:
+  AFFECTS: users of security/openssh-portable
+  AUTHOR: bdrewery@FreeBSD.org
+
+  OpenSSH 6.7 disables some insecure ciphers by default, such as arcfour
+  and blowfish. You may have clients using these over LAN where security is
+  considered less important for the connection. For these cases you may need
+  to update your Ciphers entry in your sshd_config to enable them again.
+
+  See http://mgalgs.github.io/2014/10/22/enable-arcfour-and-other-fast-ciphers-on-recent-versions-of-openssh.html
+
 20141217:
   AFFECTS: users of lang/perl5.*
   AUTHOR: mat@FreeBSD.org
author	Bryan Drewery <bdrewery@FreeBSD.org>	2014-12-18 16:17:08 +0000
committer	Bryan Drewery <bdrewery@FreeBSD.org>	2014-12-18 16:17:08 +0000
commit	13c5cf53a034475571dd2895743ae9ee2fcbfd04 (patch)
tree	16a9af533d5537f99f0f5f13b1bc3bf0deac91b8 /UPDATING
parent	60b705aaf61bbcb068552a1160bf4a1f22ea97c9 (diff)
download	ports-13c5cf53a034475571dd2895743ae9ee2fcbfd04.tar.gz ports-13c5cf53a034475571dd2895743ae9ee2fcbfd04.zip