diff options
author | Colin Watson <cjwatson@debian.org> | 2017-01-16 13:53:04 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2017-10-04 13:54:48 +0100 |
commit | 922f3a7599d03234b6bb2ffb22a33624e7cf1953 (patch) | |
tree | 02ddd5fff1b052ae44e3abe85a1eb2651ece4850 /sshd.8 | |
parent | 4847e512c0b94c615b838904a5f139a761bee284 (diff) |
Remove ssh_host_dsa_key from HostKey default
The client no longer accepts DSA host keys, and servers using the
default HostKey setting should have better host keys available.
Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=2662
Bug-Debian: https://bugs.debian.org/850614
Last-Update: 2017-01-16
Patch-Name: no-dsa-host-key-by-default.patch
Diffstat (limited to 'sshd.8')
-rw-r--r-- | sshd.8 | 7 |
1 files changed, 3 insertions, 4 deletions
@@ -164,11 +164,10 @@ This option must be given if | |||
164 | is not run as root (as the normal | 164 | is not run as root (as the normal |
165 | host key files are normally not readable by anyone but root). | 165 | host key files are normally not readable by anyone but root). |
166 | The default is | 166 | The default is |
167 | .Pa /etc/ssh/ssh_host_dsa_key , | 167 | .Pa /etc/ssh/ssh_host_rsa_key , |
168 | .Pa /etc/ssh/ssh_host_ecdsa_key , | 168 | .Pa /etc/ssh/ssh_host_ecdsa_key |
169 | .Pa /etc/ssh/ssh_host_ed25519_key | ||
170 | and | 169 | and |
171 | .Pa /etc/ssh/ssh_host_rsa_key . | 170 | .Pa /etc/ssh/ssh_host_ed25519_key . |
172 | It is possible to have multiple host key files for | 171 | It is possible to have multiple host key files for |
173 | the different host key algorithms. | 172 | the different host key algorithms. |
174 | .It Fl i | 173 | .It Fl i |