Patch to discourage unencrypted key generation

Nico Kadel-Garcia nkadel at gmail.com
Fri May 31 23:40:31 EST 2013


Generating host keys, which are normally passphrase free and done by root. That can be written into the init script, where such keys are usually generated, and complex test cases avoided.

Nico Kadel-Garcia
Email: nkadel at gmail.com
Sent from iPhone

On May 30, 2013, at 13:15, John Hawkinson <jhawk at MIT.EDU> wrote:

> Iain Morgan <imorgan at nas.nasa.gov> wrote on Thu, 30 May 2013
> at 10:13:09 -0700 in <20130530171308.GB540 at linux124.nas.nasa.gov>:
> 
>>    - When run as non-root and using an empty password, print a
>>      warning message and give a simple yes/no prompt to determine
>>      whether or not to continue.
> 
> Why is the user (root or not) of ssh-keygen relevant here?
> 
> --jhawk at mit.edu
>  John Hawkinson
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev


More information about the openssh-unix-dev mailing list