regadless of the Crypto-policy set, it is possible to login with a rsa 1024 key.
I think this is possibly due to the OpenSSH version installed in Almalinux 8.
The "min rsa size" in the Crypto-Policies set the value for the option "RequiredRSASize" in OpenSSH configuration, but this option was just implemented in OpenSSH version 9.0.
Fedora 37 has implementet the patch openssh-server-8.8p1-7.fc37 which fixed the issue.
Steps to reproduce:
generate an rsa 1024 key and copy this to the server
Hello,
regadless of the Crypto-policy set, it is possible to login with a rsa 1024 key.
I think this is possibly due to the OpenSSH version installed in Almalinux 8. The "min rsa size" in the Crypto-Policies set the value for the option "RequiredRSASize" in OpenSSH configuration, but this option was just implemented in OpenSSH version 9.0. Fedora 37 has implementet the patch openssh-server-8.8p1-7.fc37 which fixed the issue.
Steps to reproduce:
expected behavior:
actual behavior: