[Bug 202153] [PATCH] set ssh-keygen flags in rc.conf for rc.d/sshd

Fri Aug 7 08:03:40 UTC 2015

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=202153

            Bug ID: 202153
           Summary: [PATCH] set ssh-keygen flags in rc.conf for rc.d/sshd
           Product: Base System
           Version: 10.2-BETA1
          Hardware: Any
                OS: Any
            Status: New
          Keywords: patch
          Severity: Affects Many People
          Priority: ---
         Component: conf
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: milios at ccsys.com
          Keywords: patch

Created attachment 159634
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=159634&action=edit
adds variables to sshd_keygen() that pass per key-type flags from rc.conf

/etc/rc.d/sshd has some rc.conf variables that are not documented in
/etc/defaults/rc.conf:

sshd_rsa1_enable="YES"
sshd_rsa_enable="YES"
sshd_dsa_enable="YES"
sshd_ecdsa_enable="YES"
sshd_ed25519_enable="YES"

I propose adding more:

sshd_rsa1_flags=""
sshd_rsa_flags=""
sshd_dsa_flags=""
sshd_ecdsa_flags=""
sshd_ed25519_flags=""

My rc.conf.local for instance contains:

sshd_rsa1_enable="NO"
sshd_dsa_enable="NO"
sshd_rsa_flags="-b 4096"
sshd_ecdsa_flags="-b 521"

-- 
You are receiving this mail because:
You are the assignee for the bug.