From c92f924faac8359fbaca0d66062dee3d220d7228 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sat, 23 May 2020 11:45:53 +0100
Subject: [PATCH] Harden host key

---
 ansible/roles/base/files/sshd_config | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/ansible/roles/base/files/sshd_config b/ansible/roles/base/files/sshd_config
index 724faed..b4e47f6 100644
--- a/ansible/roles/base/files/sshd_config
+++ b/ansible/roles/base/files/sshd_config
@@ -11,12 +11,7 @@ ListenAddress 0.0.0.0
 # Force SSHv2 Protocol
 Protocol 2
 
-# HostKeys for protocol version 2
-HostKey /etc/ssh/ssh_host_rsa_key
-HostKey /etc/ssh/ssh_host_dsa_key
-HostKey /etc/ssh/ssh_host_ecdsa_key
-
-HostKeyAlgorithms ssh-rsa,rsa-sha2-512,rsa-sha2-256
+HostKey /etc/ssh/ssh_host_ed25519_key
 
 # Privilege Separation is turned on for security
 UsePrivilegeSeparation yes