OpenSSH 8.7 released -- Imminent deprecation of legacy ssh-rsa

would

https://lists.mindrot.org/pipermail/openssh-unix-dev/2021-August/039543.html
Legacy ssh-rsa will be deprecated in the next future release of OpenSSH
To test if your server will potentially be affected, run ssh -oHostKeyAlgorithms=-ssh-rsa. If this fails, the server software should be updated.

Further important changes include:

that scp(1) remote copies now transfer through the local host by default.
and the introduction of a new, stricter configuration file parser.

would

4 months later you really start to realize how bad this move was. Now I can't even connect to a machine running RHEL 6 from relatively new machine running the latest stable Debian release, or from RHEL 9 beta.

arvid

would Maybe a warning about potentially insecure keys would've been better than forcing it. It's important to upgrade keys though, since 'It is now possible[1] to perform chosen-prefix attacks against the SHA-1 algorithm for less than USD$50K.' - aka someone like Google or the government can do this 24 hours a day.

What do you think of https://ed25519.cr.yp.to/ ? Some claim it's even superior to 4k keys.