summaryrefslogtreecommitdiffstats
path: root/debian/rules
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-10 19:52:30 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-10 19:52:30 +0000
commit31d3f596d68e650d6d3aaf093470e7d46ff21773 (patch)
treef79b7db0070c26989407deb34ac3f2b55e21939e /debian/rules
parentSetting default ECDSA size in ssh-keygen to 521. (diff)
downloadopenssh-31d3f596d68e650d6d3aaf093470e7d46ff21773.tar.xz
openssh-31d3f596d68e650d6d3aaf093470e7d46ff21773.zip
Removing small diffie-hellman moduli.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to '')
-rwxr-xr-xdebian/rules4
1 files changed, 4 insertions, 0 deletions
diff --git a/debian/rules b/debian/rules
index fd9ab8d..6184bef 100755
--- a/debian/rules
+++ b/debian/rules
@@ -167,6 +167,10 @@ override_dh_install-arch:
debian/tmp/etc/ssh/ssh_config \
debian/tmp/etc/ssh/sshd_config
+ # Remove small Diffie-Hellman moduli
+ awk '$$5 >= 4095' debian/tmp/etc/ssh/moduli > debian/tmp/etc/ssh/moduli.tmp
+ mv -f debian/tmp/etc/ssh/moduli.tmp debian/tmp/etc/ssh/moduli
+
dh_install -Nopenssh-client-udeb -Nopenssh-server-udeb
ifeq ($(filter noudeb,$(DEB_BUILD_PROFILES)),)
dh_install -popenssh-client-udeb -popenssh-server-udeb \