Update from upstream (SHA-1 jump scare, HostbasedAcceptedAlgorithms):
- disable SHA-1 further for a Fedora 38 Rawhide "jump scare"
as described at
https://fedoraproject.org/wiki/Changes/StrongCryptoSettings3Forewarning2
This change will be reverted for the branched-off Fedora 38,
but never for Fedora 39.
Thus the change will reach the users with Fedora 39 release.
`update-crypto-policies --set FEDORA38` for the former, obsolete DEFAULT.
- openssh: control HostbasedAcceptedAlgorithms
Systems having it set at /etc/ssh/sshd_config
will have the value ignored and should instead configure it per-host.