ssh - T1719: ssh deprecated options removed

* Deprecated option since openssh 7.5 UsePrivilegeSeparation, KeyRegenerationInterval, ServerKeyBits, RSAAuthentication, RhostsRSAAuthentication
author: hagbard <vyosdev@derith.de> 2019-10-09 08:14:40 -0700
committer: hagbard <vyosdev@derith.de> 2019-10-09 08:14:40 -0700
commit: c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547 (patch)
tree: c5c708a56ffb259faa05c82d67828bf5e0514924
parent: e541ffc4f34ced045b89bd039f391d1322ff5f00 (diff)
download: vyos-1x-c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547.tar.gz
vyos-1x-c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547.zip
1 files changed, 1 insertions, 6 deletions
diff --git a/src/conf_mode/ssh.py b/src/conf_mode/ssh.py
index 2a5cba99a..e761d75ff 100755
--- a/src/conf_mode/ssh.py
+++ b/src/conf_mode/ssh.py
@@ -37,16 +37,11 @@ HostKey /etc/ssh/ssh_host_rsa_key
 HostKey /etc/ssh/ssh_host_dsa_key
 HostKey /etc/ssh/ssh_host_ecdsa_key
 HostKey /etc/ssh/ssh_host_ed25519_key
-UsePrivilegeSeparation yes
-KeyRegenerationInterval 3600
-ServerKeyBits 1024
 SyslogFacility AUTH
 LoginGraceTime 120
 StrictModes yes
-RSAAuthentication yes
 PubkeyAuthentication yes
 IgnoreRhosts yes
-RhostsRSAAuthentication no
 HostbasedAuthentication no
 PermitEmptyPasswords no
 ChallengeResponseAuthentication no
@@ -58,7 +53,7 @@ TCPKeepAlive yes
 Banner /etc/issue.net
 Subsystem sftp /usr/lib/openssh/sftp-server
 UsePAM yes
-HostKey /etc/ssh/ssh_host_key
+HostKey /etc/ssh/ssh_host_rsa_key
 
 # Specifies whether sshd should look up the remote host name,
 # and to check that the resolved host name for the remote IP
author	hagbard <vyosdev@derith.de>	2019-10-09 08:14:40 -0700
committer	hagbard <vyosdev@derith.de>	2019-10-09 08:14:40 -0700
commit	c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547 (patch)
tree	c5c708a56ffb259faa05c82d67828bf5e0514924
parent	e541ffc4f34ced045b89bd039f391d1322ff5f00 (diff)
download	vyos-1x-c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547.tar.gz vyos-1x-c4dbaa158c9b5c6e3c4ff3fe2f9f17d095732547.zip