Forgot to add this during the original policy write. We already do this in practice (that is, prefering or only using Ed25519), so it makes sense to make it the case on paper as well.
This amendment would require Ed25519 SSH keys to be used, rather than RSA or DSA keys, for servers affected by 2022-003. A translation will be made after both reviews are approved— do not merge until then.
Forgot to add this during the original policy write. We already do this in practice (that is, prefering or only using Ed25519), so it makes sense to make it the case on paper as well.
This amendment would require Ed25519 SSH keys to be used, rather than RSA or DSA keys, for servers affected by 2022-003. A translation will be made after both reviews are approved— do not merge until then.