Skip to content

Commit

Permalink
Update sshd_config (#13143)
Browse files Browse the repository at this point in the history 
Afaik, adding these lines does nothing unless the file(s) are present. Having them in let's admins supply certs instead of relying on TOFU.

Co-authored-by: zeripath <art27@cantab.net>
  • Loading branch information
@aes @zeripath
aes and zeripath authored Oct 14, 2020
1 parent 36e41d4 commit 01f991a
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions docker/root/etc/templates/sshd_config
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,13 @@ ListenAddress ::
LogLevel INFO

HostKey /data/ssh/ssh_host_ed25519_key
HostCertificate /data/ssh/ssh_host_ed25519_cert
HostKey /data/ssh/ssh_host_rsa_key
HostCertificate /data/ssh/ssh_host_rsa_cert
HostKey /data/ssh/ssh_host_ecdsa_key
HostCertificate /data/ssh/ssh_host_ecdsa_cert
HostKey /data/ssh/ssh_host_dsa_key
HostCertificate /data/ssh/ssh_host_dsa_cert

AuthorizedKeysFile .ssh/authorized_keys
AuthorizedPrincipalsFile .ssh/authorized_principals
Expand Down

0 comments on commit 01f991a

Please sign in to comment.