Do not create any DSA keys any more

DSA is considered weak cryptography Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2026-04-14 04:52:59 +02:00 · 2015-08-20 23:20:44 +01:00
parent cec620efdf
commit 04da8aa70a
3 changed files with 5 additions and 1 deletions
--- a/src/initscripts/init.d/sshd
+++ b/src/initscripts/init.d/sshd
@@ -18,7 +18,7 @@ case "$1" in
 		evaluate_retval
 	fi

-	for algo in rsa dsa ecdsa ed25519; do
+	for algo in rsa ecdsa ed25519; do
 		keyfile="/etc/ssh/ssh_host_${algo}_key"

 		# If the key already exists, there is nothing to do.