]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commitdiff
projects / people / pmueller / ipfire-2.x.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: bb0e8de)
OpenSSH: do not ship ssh-keysign anymore
authorPeter Müller <peter.mueller@ipfire.org>
Sun, 16 May 2021 20:48:58 +0000 (22:48 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Mon, 17 May 2021 14:07:33 +0000 (14:07 +0000)
To my surprise, this binary comes with suid flag set, and since we do
not have SSH key signing enabled, there is no need to ship it with
IPFire.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
config/rootfiles/common/openssh patch | blob | blame | history

diff --git a/config/rootfiles/common/openssh b/config/rootfiles/common/openssh
index f2f8ea6c5e91b9ddaf61f6bdc2231a8d759e2356..c3666d91481016025f18a6bd865363e5f5bed55c 100644 (file)
--- a/config/rootfiles/common/openssh
+++ b/config/rootfiles/common/openssh
@@ -19,7 +19,7 @@ usr/bin/ssh-keygen
 usr/bin/ssh-keyscan
 #usr/lib/openssh
 usr/lib/openssh/sftp-server
-usr/lib/openssh/ssh-keysign
+#usr/lib/openssh/ssh-keysign
 usr/lib/openssh/ssh-pkcs11-helper
 usr/lib/openssh/ssh-sk-helper
 usr/sbin/sshd
Peter's tree of IPFire 2.x