* Remove the check for vulnerable host keys; this was first added five

  years ago, and everyone should have upgraded through a version that
  applied these checks by now.  The ssh-vulnkey tool and the blacklisting
  support in sshd are still here, at least for the moment.
* This removes the last of our uses of debconf (closes: #221531).

1 files changed, 0 insertions, 30 deletions

diff --git a/debian/openssh-server.templates b/debian/openssh-server.templates
deleted file mode 100644
index 581d71956..000000000
--- a/debian/openssh-server.templates
+++ /dev/null
@@ -1,30 +0,0 @@
-# These templates have been reviewed by the debian-l10n-english
-# team
-#
-# If modifications/additions/rewording are needed, please ask
-# for an advice to debian-l10n-english@lists.debian.org
-#
-# Even minor modifications require translation updates and such
-# changes should be coordinated with translators and reviewers.
-#
-Template: ssh/vulnerable_host_keys
-Type: note
-#flag:translate!:5
-_Description: Vulnerable host keys will be regenerated
- Some of the OpenSSH server host keys on this system were generated with a
- version of OpenSSL that had a broken random number generator. As a result,
- these host keys are from a well-known set, are subject to brute-force
- attacks, and must be regenerated.
- .
- Users of this system should be informed of this change, as they will be
- prompted about the host key change the next time they log in. Use
- 'ssh-keygen -l -f HOST_KEY_FILE' after the upgrade to print the
- fingerprints of the new host keys.
- .
- The affected host keys are:
- .
- ${HOST_KEYS}
- .
- User keys may also be affected by this problem. The 'ssh-vulnkey' command
- may be used as a partial test for this. See
- /usr/share/doc/openssh-server/README.compromised-keys.gz for more details.