Re: Keys generated by "/etc/rc.d/sshd"

To: Greg Troxel <gdt%ir.bbn.com@localhost>
Subject: Re: Keys generated by "/etc/rc.d/sshd"
From: Adrian Portelli <adrianp%stindustries.net@localhost>
Date: Wed, 28 May 2008 15:06:35 +0100

Greg Troxel wrote:

Adrian Portelli <adrianp%stindustries.net@localhost> writes:

Matthias Scheler wrote:

        Hello,

"/etc/rc.d/sshd" still generates host keys for the SSH protocol version 1.
Would anybody object if I remove that part?

        Kind regards

Support for the SSH protocol v1 has been disabled by default in
sshd_config(5) for a while now.  However, I think it would be nice to
keep the functionality in the rc script.


I like Matthias's suggestion to stop generating v1 keys by default.

Maybe keep it, but just not do it by default ?


How about if

sshd_generate_v1keys

is yes, then it makes v1 keys, and it defaults to no, or isn't in
defaults/rc.conf at all?


Sounds good to me.

adrian.

References:
- Keys generated by "/etc/rc.d/sshd"
  - From: Matthias Scheler
- Re: Keys generated by "/etc/rc.d/sshd"
  - From: Adrian Portelli
- Re: Keys generated by "/etc/rc.d/sshd"
  - From: Greg Troxel

Prev by Date: Re: Keys generated by "/etc/rc.d/sshd"
Next by Date: Re: Keys generated by "/etc/rc.d/sshd"
Previous by Thread: Re: Keys generated by "/etc/rc.d/sshd"
Next by Thread: Re: Keys generated by "/etc/rc.d/sshd"
Indexes:

Home | Main Index | Thread Index | Old Index