[Nix-dev] SECURITY: default SSH host keys are weak

[Eelco Dolstra]

Hi,

On 23/08/13 20:25, Mathijs Kwik wrote:

> I currently only have an ecdsa host key and would like to keep it that way.
> This patch would give me a dsa key too which I don't want.

The ssh client prefers ECDSA host keys over DSA keys so I don't think this is a
big deal.  But we could have an option to enable/disable generation of DSA keys.

-- 
Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/