summaryrefslogtreecommitdiff
path: root/definitions/wheezy/base.sh
diff options
context:
space:
mode:
Diffstat (limited to 'definitions/wheezy/base.sh')
-rw-r--r--definitions/wheezy/base.sh4
1 files changed, 4 insertions, 0 deletions
diff --git a/definitions/wheezy/base.sh b/definitions/wheezy/base.sh
index 0e4686c..8c0fa6c 100644
--- a/definitions/wheezy/base.sh
+++ b/definitions/wheezy/base.sh
@@ -21,6 +21,10 @@ sed -i -e 's/%sudo.*ALL=(ALL:ALL) ALL/%sudo ALL=NOPASSWD:ALL/g' /etc/sudoers
# Tweak sshd to prevent DNS resolution (speed up logins)
echo 'UseDNS no' >> /etc/ssh/sshd_config
+# remove unsecure nist ecdsa keys
+sed -i /ecdsa/d' /etc/ssh/sshd_config
+# i'm hesitant to include openssh-server from backports for wheezy, so commented out for now
+# HostKey /etc/ssh/ssh_host_ed25519_key
# Remove 5s grub timeout to speed up booting
echo <<EOF > /etc/default/grub
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-15 19:11:57 +0000