From 5f5d4ff3b29c40d8d0c86e6eaac2820183daf89b Mon Sep 17 00:00:00 2001
From: hydrajump <wave@hydrajump.com>
Date: Wed, 2 Apr 2014 21:17:22 +0200
Subject: Delete SSH blacklists as they are no longer needed

The SSH blacklists were committed 5 years ago and the
original contributor does not recall why they were added.
---
 debian/vyatta-cfg-system.postinst.in | 14 --------------
 1 file changed, 14 deletions(-)

(limited to 'debian')

diff --git a/debian/vyatta-cfg-system.postinst.in b/debian/vyatta-cfg-system.postinst.in
index cf9eecdb..735b49ff 100755
--- a/debian/vyatta-cfg-system.postinst.in
+++ b/debian/vyatta-cfg-system.postinst.in
@@ -76,20 +76,6 @@ if [ "$sysconfdir" != "/etc" ]; then
     cp $sysconfdir/sudoers /etc/sudoers.d/vyatta
     chmod 0440 /etc/sudoers.d/vyatta
 
-    # set up blacklists
-    for f in blacklist.DSA-1024 blacklist.RSA-2048; do
-        if [ -r "/etc/ssh/$f" ]; then
-            l=$(head -1 $sysconfdir/$f)
-            if ! grep -q "$l" /etc/ssh/$f; then
-                tmp=$(mktemp /tmp/bl.XXXXXXXXXX)
-                cat /etc/ssh/$f $sysconfdir/$f | sort >$tmp
-                mv $tmp /etc/ssh/$f
-            fi
-        else
-            cp $sysconfdir/$f /etc/ssh/$f
-        fi
-    done
-
     # purge off ancient devfs stuff from /etc/securetty
     cp $sysconfdir/securetty /etc/securetty
 
-- 
cgit v1.2.3