From 9f1cc848d194d9b85d839ef847df5062d56941c2 Mon Sep 17 00:00:00 2001 From: jjakob Date: Sat, 19 Oct 2019 03:19:54 +0200 Subject: T1743: do not generate ssh rsa1 host keys --- debian/vyatta-cfg-system.postinst.in | 6 ------ scripts/rl-system.init | 4 ---- 2 files changed, 10 deletions(-) diff --git a/debian/vyatta-cfg-system.postinst.in b/debian/vyatta-cfg-system.postinst.in index 18e84055..708251b3 100755 --- a/debian/vyatta-cfg-system.postinst.in +++ b/debian/vyatta-cfg-system.postinst.in @@ -60,12 +60,6 @@ if [ "$sysconfdir" != "/etc" ]; then sed -i 's/^#PasswordAuthentication/PasswordAuthentication/' /etc/ssh/sshd_config sed -i '/^PasswordAuthentication/s/no/yes/' /etc/ssh/sshd_config - # add HostKeys for protocol version 1 - if ! grep -q '^HostKey /etc/ssh/ssh_host_key' /etc/ssh/sshd_config; then - echo '# HostKey for protocol version 1' >> /etc/ssh/sshd_config - echo 'HostKey /etc/ssh/ssh_host_key' >> /etc/ssh/sshd_config - fi - # add UseDNS line sed -i '/^UseDNS/d' /etc/ssh/sshd_config echo 'UseDNS yes' >>/etc/ssh/sshd_config diff --git a/scripts/rl-system.init b/scripts/rl-system.init index 62eac9e7..0af72cd9 100755 --- a/scripts/rl-system.init +++ b/scripts/rl-system.init @@ -112,10 +112,6 @@ create_ssh_host_keys () { syslog "Creating ssh v2 dsa host key." ssh-keygen -q -N '' -t dsa -f /etc/ssh/ssh_host_dsa_key fi; - if [ ! -f "/etc/ssh/ssh_host_key" ]; then - syslog "Creating ssh v1 host key." - ssh-keygen -q -N '' -t rsa1 -f /etc/ssh/ssh_host_key - fi; if [ ! -f "/etc/ssh/ssh_host_ed25519_key" ]; then syslog "Creating ssh ed25519 host key." ssh-keygen -q -N '' -t ed25519 -f /etc/ssh/ssh_host_ed25519_key -- cgit v1.2.3