Gitlab SSH post-quantum key exchange

History / Edit / PDF / EPUB / BIB / 1 min read (~159 words)
gitlab ssh post-quantum-cryptography pqc security

A small PSA for Gitlab users who use SSH to connect to their Git repositories.
If you get the following warning when trying to connect:

** WARNING: connection is not using a post-quantum key exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See https://openssh.com/pq.html

You should upgrade your Gitlab instance to the latest.
If you need to upgrade, you can use Gitlab's upgrade path tool which is very helpful to identify the correct upgrade steps to take.

You may also have to upgrade your operating system.
In my case I was still on Ubuntu 20.04 LTS it did not support post-quantum key exchange.

Note that if you do a release upgrade, you also should update the apt sources to point to the new release (e.g., going from focal to jammy) and upgrade gitlab using the updated source.

Tags

artificial-general-intelligence (234) questions (92) machine-learning (91) processes (40) software-development (30) problems (28) chatgpt (20) programming (16) php (15) learning (14) work (13) python (11) fully-ai-generated (10) ai-feedback (7) partially-ai-generated (7) productivity (6) artificial-intelligence (6) computers (5) windows (5) games (5) general (5) ai (4) llm=gpt-oss-120b (4) task-management (4) visual-studio-code (4) note-taking (4) llm=chatgpt-4.1 (4) reading (4) weekly-readings (4) software (3) story (3) projects (3) llm=gpt-oss-20b (3) phpunit (3) sites (3) time-series (3) devops (3) javascript (2) tool (2) teamwork (2) quotes (2) llm (2) time-management (2) computer-science (2) apache (2) code-coverage (2) books (2) joke (2) docker (2) performance (2) agi (2) git (2) wsl (2) network (2) mac-os-x (2) semaphore (1) api (1) web-services (1) goals (1) groups (1) aws (1) .htaccess (1) rewriterule (1) thought (1) psychology (1) access-management (1) identity (1) policies (1) roles (1) technology (1) users (1) management (1) test (1) efficiency (1) cognitive-science (1) security (1) ocr (1) tortoisegit (1) certificates (1) self (1) image-generation (1) code-generation (1) rate-limiting (1) flink (1) llm=deepseek (1) llm=claude-sonnet-4 (1) tabs (1) browser (1) pqc (1) claude (1) post-quantum-cryptography (1) ssh (1) gitlab (1) serialization (1) extensions (1) c (1) bootcamp (1) llm=chatgpt-4o (1) munin (1) llm=claude-opus-4.1 (1) llm=chatgpt-5 (1) llm=claude-sonnet-4.5 (1) llm=chatgpt-4 (1) mysql (1) web-crawler (1) ipcs (1) planning (1) manictime (1) datastore (1) database (1) data (1) anki (1) ml (1) fasterfox (1) firefox (1) neurosciences (1) thoughts (1) philosophy (1) prioritization (1) habits (1) priority (1) leopard (1) intelligence-augmentation (1) forum (1) dll (1) fitness (1) health (1) quantified self (1) stocks (1) finance (1) wikipedia (1) investing (1) reusable-writing (1) ipcrm (1) laravel (1) identifier-removed (1) dvd (1) curricula (1) writing (1) web (1) workflow (1) template (1) game-development (1) enginuity (1) self-promotion (1) jenkins (1) ssd (1) reusable-notes (1) software-engineering (1) internals (1) startup (1) effectiveness (1) wordpress (1) themes (1) k2 (1) finances (1) space (1) company-growth (1) principles (1) landing-page (1)

Syndicate

Atom 1.0 RSS

tomrochette.com

Gitlab SSH post-quantum key exchange

Tags

Archives

Syndicate