artulab
projects / openbsd / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: cd4a963)
etc: drop vestiges of obsolete DSA ssh host keys
authornaddy <naddy@openbsd.org>
Tue, 19 Sep 2023 15:02:54 +0000 (15:02 +0000)
committernaddy <naddy@openbsd.org>
Tue, 19 Sep 2023 15:02:54 +0000 (15:02 +0000)
It has been 8 years since DSA keys were disabled by default for
ssh/sshd, and 15 months since ssh-keygen -A belatedly stopped
generating DSA host keys.

ok semarie@ deraadt@

etc/changelist patch | blob | history
etc/mtree/special patch | blob | history

diff --git a/etc/changelist b/etc/changelist
index 10f546b..ad69d8b 100644 (file)
--- a/etc/changelist
+++ b/etc/changelist
@@ -1,4 +1,4 @@
-#      $OpenBSD: changelist,v 1.136 2023/04/24 16:36:54 kn Exp $
+#      $OpenBSD: changelist,v 1.137 2023/09/19 15:02:54 naddy Exp $
 #
 # List of files which the security script backs up and checks
 # for modifications.
@@ -126,8 +126,6 @@
 +/etc/soii.key
 +/etc/spwd.db
 /etc/ssh/ssh_config
-+/etc/ssh/ssh_host_dsa_key
-/etc/ssh/ssh_host_dsa_key.pub
 +/etc/ssh/ssh_host_ecdsa_key
 /etc/ssh/ssh_host_ecdsa_key.pub
 +/etc/ssh/ssh_host_ed25519_key
diff --git a/etc/mtree/special b/etc/mtree/special
index dbe1aa7..e208ce2 100644 (file)
--- a/etc/mtree/special
+++ b/etc/mtree/special
@@ -1,4 +1,4 @@
-#      $OpenBSD: special,v 1.128 2022/05/12 22:13:06 sthen Exp $
+#      $OpenBSD: special,v 1.129 2023/09/19 15:02:55 naddy Exp $
 #
 # Hand-crafted mtree specification for the dangerous files.
 #
@@ -101,8 +101,6 @@ soii.key    type=file mode=0600 uname=root gname=wheel optional
 spwd.db                type=file mode=0640 uname=root gname=_shadow
 ssh            type=dir mode=0755 uname=root gname=wheel optional
 ssh_config     type=file mode=0644 uname=root gname=wheel
-ssh_host_dsa_key       type=file mode=0600 uname=root gname=wheel optional
-ssh_host_dsa_key.pub   type=file mode=0644 uname=root gname=wheel optional
 ssh_host_ecdsa_key     type=file mode=0600 uname=root gname=wheel optional
 ssh_host_ecdsa_key.pub type=file mode=0644 uname=root gname=wheel optional
 ssh_host_ed25519_key   type=file mode=0600 uname=root gname=wheel optional
OpenBSD src
by Ahmet Artu Yildirim