HomePhabricator

options: Added an option to set server HostKey algorithms

Authored by Anderson Toshiyuki Sasaki <ansasaki@redhat.com> on May 17 2019, 11:38 AM.

Description

options: Added an option to set server HostKey algorithms

The added option SSH_BIND_OPTIONS_HOSTKEY_ALGORITHMS allows restricting
the signature algorithms to offer to the client for host authentication.
The list set is used as a filter of allowed algorithms.

First a list of possible signature algorithms to offer is created from
the keys set and then such list is filtered against the allowed
algorithms.

Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>

Details

Committed
asnJun 12 2019, 10:17 AM
Parents
rLIBSSH8f6e6f774e4d: bind_config: Add support for PubkeyAcceptedKeyTypes
Branches
Unknown
Tags
Unknown