Order of keys matter, ed25519 is recommended

2024-09-03 20:06:10 +02:00 · 2018-11-28 18:59:34 +00:00 · 2018-11-28 18:59:34 +00:00 · f295c83fd3
commit f295c83fd3
parent 3d81f032e9
2 changed files with 2 additions and 2 deletions
--- a/bin/yunoprompt
+++ b/bin/yunoprompt
@ -5,7 +5,7 @@ ip=$(hostname --all-ip-address)
 # Fetch SSH fingerprints
 i=0
-for key in $(ls /etc/ssh/ssh_host_{rsa,ecdsa,ed25519}_key.pub 2> /dev/null) ; do 
+for key in $(ls /etc/ssh/ssh_host_{ed25519,rsa,ecdsa}_key.pub 2> /dev/null) ; do 
    output=$(ssh-keygen -l -f $key)
    fingerprint[$i]=" - $(echo $output | cut -d' ' -f2) $(echo $output| cut -d' ' -f4)"
    i=$(($i + 1))
--- a/data/hooks/conf_regen/03-ssh
+++ b/data/hooks/conf_regen/03-ssh
@ -16,7 +16,7 @@ do_pre_regen() {
        || sed -i "s/ListenAddress ::/#ListenAddress ::/g" sshd_config
      # Support legacy setting (this setting might be disabled by a user during a migration)
-      ssh_keys=$(ls /etc/ssh/ssh_host_{rsa,ecdsa,ed25519}_key 2>/dev/null)
+      ssh_keys=$(ls /etc/ssh/ssh_host_{ed25519,rsa,ecdsa}_key 2>/dev/null)
      if [[ "$(yunohost settings get 'service.ssh.allow_deprecated_dsa_hostkey')" == "True" ]]; then
          ssh_keys="$ssh_keys $(ls /etc/ssh/ssh_host_dsa_key 2>/dev/null)"
      fi