diff options
author | Colin Watson <cjwatson@debian.org> | 2017-01-16 13:53:04 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2017-01-16 15:02:55 +0000 |
commit | 3f1016b4535faf6e48aa71e21569aa714a25193f (patch) | |
tree | 5463abf83fa1101a096dc2f4ab03e0eae72c3cfb /servconf.c | |
parent | 8c1a0893f0e55a793071af9734d2fa2eb1f3a2a6 (diff) |
Remove ssh_host_dsa_key from HostKey default
The client no longer accepts DSA host keys, and servers using the
default HostKey setting should have better host keys available.
Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=2662
Bug-Debian: https://bugs.debian.org/850614
Last-Update: 2017-01-16
Patch-Name: no-dsa-host-key-by-default.patch
Diffstat (limited to 'servconf.c')
-rw-r--r-- | servconf.c | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/servconf.c b/servconf.c index 1cee3d6c2..202c45066 100644 --- a/servconf.c +++ b/servconf.c | |||
@@ -204,8 +204,6 @@ fill_default_server_options(ServerOptions *options) | |||
204 | /* fill default hostkeys for protocols */ | 204 | /* fill default hostkeys for protocols */ |
205 | options->host_key_files[options->num_host_key_files++] = | 205 | options->host_key_files[options->num_host_key_files++] = |
206 | _PATH_HOST_RSA_KEY_FILE; | 206 | _PATH_HOST_RSA_KEY_FILE; |
207 | options->host_key_files[options->num_host_key_files++] = | ||
208 | _PATH_HOST_DSA_KEY_FILE; | ||
209 | #ifdef OPENSSL_HAS_ECC | 207 | #ifdef OPENSSL_HAS_ECC |
210 | options->host_key_files[options->num_host_key_files++] = | 208 | options->host_key_files[options->num_host_key_files++] = |
211 | _PATH_HOST_ECDSA_KEY_FILE; | 209 | _PATH_HOST_ECDSA_KEY_FILE; |