Module Name: src Committed By: riastradh Date: Fri Jan 11 04:32:42 UTC 2013
Modified Files: src/etc/defaults: rc.conf Log Message: Nix `-b 1024' from ssh_keygen_flags in /etc/defaults/rc.conf. No objections on tech-security: http://mail-index.NetBSD.org/tech-security/2012/09/03/msg000548.html The security of generating keys at boot remains questionable, but this change makes that no worse. To generate a diff of this commit: cvs rdiff -u -r1.120 -r1.121 src/etc/defaults/rc.conf Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
Modified files: Index: src/etc/defaults/rc.conf diff -u src/etc/defaults/rc.conf:1.120 src/etc/defaults/rc.conf:1.121 --- src/etc/defaults/rc.conf:1.120 Mon Aug 13 08:20:44 2012 +++ src/etc/defaults/rc.conf Fri Jan 11 04:32:41 2013 @@ -1,4 +1,4 @@ -# $NetBSD: rc.conf,v 1.120 2012/08/13 08:20:44 christos Exp $ +# $NetBSD: rc.conf,v 1.121 2013/01/11 04:32:41 riastradh Exp $ # # /etc/defaults/rc.conf -- # default configuration of /etc/rc.conf @@ -228,7 +228,7 @@ ntpd=NO ntpd_flags="" # see below for postfix=${_rc_d_postfix:-YES} lpd=NO lpd_flags="-s" # -s "secure" unix domain only sshd=NO sshd_flags="" -ssh_keygen_flags="-b 1024" # generate 1024 bit keys if host keys missing +ssh_keygen_flags="" ftpd=NO ftpd_flags="-ll" httpd=NO httpd_flags="" httpd_wwwdir="/var/www"