diff options
author | Colin Watson <cjwatson@debian.org> | 2014-02-10 03:41:41 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2014-02-10 03:41:44 +0000 |
commit | b278395b509ad8458df1ddabf4f8008a24c4998f (patch) | |
tree | a37c79b52fe20bba1b515df505d9ed9f70460655 /debian/openssh-server.postinst | |
parent | 59107897c30ec1df0925da0ce6755e9d3e98fa3d (diff) |
Generate ED25519 host keys on fresh installations.
Upgraders who wish to add such host keys should manually add 'HostKey
/etc/ssh/ssh_host_ed25519_key' to /etc/ssh/sshd_config and run 'ssh-keygen
-q -f /etc/ssh/ssh_host_ed25519_key -N "" -t ed25519'.
Diffstat (limited to 'debian/openssh-server.postinst')
-rw-r--r-- | debian/openssh-server.postinst | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/debian/openssh-server.postinst b/debian/openssh-server.postinst index 54dbe13a2..91c757db5 100644 --- a/debian/openssh-server.postinst +++ b/debian/openssh-server.postinst | |||
@@ -84,6 +84,7 @@ host_keys_required() { | |||
84 | echo /etc/ssh/ssh_host_rsa_key | 84 | echo /etc/ssh/ssh_host_rsa_key |
85 | echo /etc/ssh/ssh_host_dsa_key | 85 | echo /etc/ssh/ssh_host_dsa_key |
86 | echo /etc/ssh/ssh_host_ecdsa_key | 86 | echo /etc/ssh/ssh_host_ecdsa_key |
87 | echo /etc/ssh/ssh_host_ed25519_key | ||
87 | fi | 88 | fi |
88 | fi | 89 | fi |
89 | } | 90 | } |
@@ -121,6 +122,8 @@ create_keys() { | |||
121 | "$hostkeys" /etc/ssh/ssh_host_dsa_key -t dsa | 122 | "$hostkeys" /etc/ssh/ssh_host_dsa_key -t dsa |
122 | create_key "Creating SSH2 ECDSA key; this may take some time ..." \ | 123 | create_key "Creating SSH2 ECDSA key; this may take some time ..." \ |
123 | "$hostkeys" /etc/ssh/ssh_host_ecdsa_key -t ecdsa | 124 | "$hostkeys" /etc/ssh/ssh_host_ecdsa_key -t ecdsa |
125 | create_key "Creating SSH2 ED25519 key; this may take some time ..." \ | ||
126 | "$hostkeys" /etc/ssh/ssh_host_ed25519_key -t ed25519 | ||
124 | } | 127 | } |
125 | 128 | ||
126 | 129 | ||
@@ -176,6 +179,7 @@ Protocol 2 | |||
176 | HostKey /etc/ssh/ssh_host_rsa_key | 179 | HostKey /etc/ssh/ssh_host_rsa_key |
177 | HostKey /etc/ssh/ssh_host_dsa_key | 180 | HostKey /etc/ssh/ssh_host_dsa_key |
178 | HostKey /etc/ssh/ssh_host_ecdsa_key | 181 | HostKey /etc/ssh/ssh_host_ecdsa_key |
182 | HostKey /etc/ssh/ssh_host_ed25519_key | ||
179 | #Privilege Separation is turned on for security | 183 | #Privilege Separation is turned on for security |
180 | UsePrivilegeSeparation yes | 184 | UsePrivilegeSeparation yes |
181 | 185 | ||