diff options
author | Jose Luis Duran <jlduran@users.noreply.github.com> | 2016-04-15 22:36:33 -0300 |
---|---|---|
committer | Stephen Beaver <sbeaver@netgate.com> | 2016-06-22 10:06:47 -0400 |
commit | 088ffabc3bf67a48a04ff6abb59ce8b33ce3927c (patch) | |
tree | 0bcf966033d25a40d747a27d5b1346b94296a78a /src | |
parent | a9274a80842ca5e1b533b85b6f0999de64f2e99b (diff) | |
download | pfsense-088ffabc3bf67a48a04ff6abb59ce8b33ce3927c.zip pfsense-088ffabc3bf67a48a04ff6abb59ce8b33ce3927c.tar.gz |
Force 4096 RSA keys
Add option `-b 4096` to force the keys to 4096-bit.
This parameter is ignored for Ed25519 keys.
(cherry picked from commit 971257cbdf687c79943237b6c2f5e37c596318af)
Diffstat (limited to 'src')
-rwxr-xr-x | src/etc/sshd | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/etc/sshd b/src/etc/sshd index cd5c647..eebd601 100755 --- a/src/etc/sshd +++ b/src/etc/sshd @@ -178,7 +178,7 @@ mark_subsystem_dirty('sshdkeys'); echo " Generating Keys:\n"; foreach ($generate_keys as $key) { - $_gb = exec("/usr/bin/nice -n20 /usr/bin/ssh-keygen -t {$key['type']} -N '' -f {$sshConfigDir}/ssh_host_{$key['suffix']}key"); + $_gb = exec("/usr/bin/nice -n20 /usr/bin/ssh-keygen -t {$key['type']} -b 4096 -N '' -f {$sshConfigDir}/ssh_host_{$key['suffix']}key"); } clear_subsystem_dirty('sshdkeys'); file_notice("SSH", "{$g['product_name']} has completed creating your SSH keys. SSH is now started.", "SSH Startup", ""); |