diff options
author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-06 01:33:04 +0000 |
---|---|---|
committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-06 01:33:04 +0000 |
commit | f3212a95425ac55b5db711e155c61d006f2a40b1 (patch) | |
tree | 8033900b153652a96d4a09cedb8f8a7d460e9f3b | |
parent | Setting default ECDSA size in ssh-keygen to 521. (diff) | |
download | openssh-f3212a95425ac55b5db711e155c61d006f2a40b1.tar.xz openssh-f3212a95425ac55b5db711e155c61d006f2a40b1.zip |
Removing small diffie-hellman moduli.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to '')
-rwxr-xr-x | debian/rules | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/debian/rules b/debian/rules index 550306d..4fb3313 100755 --- a/debian/rules +++ b/debian/rules @@ -181,6 +181,10 @@ endif debian/openssh-server/etc/ssh/moduli \ debian/openssh-client/etc/ssh/ssh_config + # Remove small Diffie-Hellman moduli + awk '$$5 >= 4095' debian/openssh-server/etc/ssh/moduli > debian/openssh-server/etc/ssh/moduli.tmp + mv -f debian/openssh-server/etc/ssh/moduli.tmp debian/openssh-server/etc/ssh/moduli + # We'd like to use dh_install --fail-missing here, but that doesn't work # well in combination with dh-exec: it complains that files generated by # dh-exec for architecture-dependent packages aren't installed. |