Branch: refs/heads/production
Home: https://github.com/jenkins-infra/jenkins-infra
Commit: 51a119927cf46c460d56bed7edc7212cb9224d30
https://github.com/jenkins-infra/jenkins-infra/commit/51a119927cf46c460d56bed7edc7212cb9224d30
Author: Mark Waite <mark.earl.wa...@gmail.com>
Date: 2023-04-12 (Wed, 12 Apr 2023)
Changed paths:
M dist/profile/manifests/buildagent.pp
Log Message:
-----------
Use ED-25519 host key for github.com (#2714)
The ED-25519 host key is a shorter string and was not rotated by GitHub
in their 2023-03-24 host key rotation. It was not rotated because the
ED-25591 private host key was not exposed in a public repository like
the RSA private host key was.
Consider this a prototype for discussion of the idea of switching to
ED-25519 rather than as a firm claim that this is what we should do.
The Jenkins git client plugin documentation includes the ED-25519 host
key for github.com in its configuration as code sample because it is much
easier to read and seems to be at least as strong as the RSA key.
https://plugins.jenkins.io/git-client/#plugin-content-configuration-as-code-sample
https://security.stackexchange.com/questions/90077/ssh-key-ed25519-vs-rsa
and https://news.ycombinator.com/item?id=12575358 compare ED25519 and
RSA keys for those who might be interested.
Co-authored-by: Damien Duportal <damien.dupor...@gmail.com>
--
You received this message because you are subscribed to the Google Groups
"Jenkins Commits" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to jenkinsci-commits+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/jenkinsci-commits/jenkins-infra/jenkins-infra/push/refs/heads/production/dd2f04-51a119%40github.com.
