Source-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[src/trunk]: src/etc/defaults Nix `-b 1024' from ssh_keygen_flags in /etc/def...



details:   https://anonhg.NetBSD.org/src/rev/b8fae4d4e8b2
branches:  trunk
changeset: 783870:b8fae4d4e8b2
user:      riastradh <riastradh%NetBSD.org@localhost>
date:      Fri Jan 11 04:32:41 2013 +0000

description:
Nix `-b 1024' from ssh_keygen_flags in /etc/defaults/rc.conf.

No objections on tech-security:

http://mail-index.NetBSD.org/tech-security/2012/09/03/msg000548.html

The security of generating keys at boot remains questionable, but
this change makes that no worse.

diffstat:

 etc/defaults/rc.conf |  4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)

diffs (18 lines):

diff -r 49b4425c5961 -r b8fae4d4e8b2 etc/defaults/rc.conf
--- a/etc/defaults/rc.conf      Fri Jan 11 02:49:09 2013 +0000
+++ b/etc/defaults/rc.conf      Fri Jan 11 04:32:41 2013 +0000
@@ -1,4 +1,4 @@
-#      $NetBSD: rc.conf,v 1.120 2012/08/13 08:20:44 christos Exp $
+#      $NetBSD: rc.conf,v 1.121 2013/01/11 04:32:41 riastradh Exp $
 #
 # /etc/defaults/rc.conf --
 #      default configuration of /etc/rc.conf
@@ -228,7 +228,7 @@
 postfix=${_rc_d_postfix:-YES}
 lpd=NO                 lpd_flags="-s"          # -s "secure" unix domain only
 sshd=NO                        sshd_flags=""
-ssh_keygen_flags="-b 1024"     # generate 1024 bit keys if host keys missing
+ssh_keygen_flags=""
 ftpd=NO                        ftpd_flags="-ll"
 httpd=NO               httpd_flags=""
                        httpd_wwwdir="/var/www"



Home | Main Index | Thread Index | Old Index