DSA is considered weak cryptography
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
etc/system-release
etc/issue
+etc/rc.d/init.d/sshd
var/ipfire/langs
sed -i /etc/ssh/sshd_config \
-e 's/^#\?PermitRootLogin .*$$/PermitRootLogin yes/'
+# Move away old and unsupported keys
+mv -f /etc/ssh/ssh_host_dsa_key{,.old}
+
# Start services
/etc/init.d/dnsmasq start
/etc/init.d/sshd start
evaluate_retval
fi
- for algo in rsa dsa ecdsa ed25519; do
+ for algo in rsa ecdsa ed25519; do
keyfile="/etc/ssh/ssh_host_${algo}_key"
# If the key already exists, there is nothing to do.