From ddbd1acca08b9bf1e93f56f629c64c992ea52fa6 Mon Sep 17 00:00:00 2001
From: Aminda Suomalainen <suomalainen+git@mikaela.info>
Date: Fri, 12 Jan 2024 13:50:49 +0200
Subject: [PATCH] ssh: disable RSA host key

---
 etc/ssh/sshd_config.d/00-basic-security.conf | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/etc/ssh/sshd_config.d/00-basic-security.conf b/etc/ssh/sshd_config.d/00-basic-security.conf
index d4ba6155..aa0a351f 100644
--- a/etc/ssh/sshd_config.d/00-basic-security.conf
+++ b/etc/ssh/sshd_config.d/00-basic-security.conf
@@ -1,8 +1,6 @@
-# RSA and Ed25519 are fine, but DSA is broken and ecdsa is suspicious
+# Ed25519 is fine, but DSA is broken, time has passed RSA and ecdsa is sus…
 # Missing keys?
 # ssh-keygen -t ed25519 -N "" -f /etc/ssh/ssh_host_ed25519_key
-# ssh-keygen -t rsa -N "" -f /etc/ssh/ssh_host_rsa_key
-HostKey /etc/ssh/ssh_host_rsa_key
 HostKey /etc/ssh/ssh_host_ed25519_key
 
 # Includes public keys in logins