From c92f924faac8359fbaca0d66062dee3d220d7228 Mon Sep 17 00:00:00 2001 From: Jake Howard Date: Sat, 23 May 2020 11:45:53 +0100 Subject: [PATCH] Harden host key --- ansible/roles/base/files/sshd_config | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/ansible/roles/base/files/sshd_config b/ansible/roles/base/files/sshd_config index 724faed..b4e47f6 100644 --- a/ansible/roles/base/files/sshd_config +++ b/ansible/roles/base/files/sshd_config @@ -11,12 +11,7 @@ ListenAddress 0.0.0.0 # Force SSHv2 Protocol Protocol 2 -# HostKeys for protocol version 2 -HostKey /etc/ssh/ssh_host_rsa_key -HostKey /etc/ssh/ssh_host_dsa_key -HostKey /etc/ssh/ssh_host_ecdsa_key - -HostKeyAlgorithms ssh-rsa,rsa-sha2-512,rsa-sha2-256 +HostKey /etc/ssh/ssh_host_ed25519_key # Privilege Separation is turned on for security UsePrivilegeSeparation yes