» Do it. Now.

Ignore vulnerable keys from OpenSSH blacklist

Beware! Just do this if you know what you are doing!

linux:~# dpkg --remove --force-depends openssh-blacklist 
linux:~# /etc/init.d/ssh restart 


This works better, because openssh-blacklist would be reinstalled on each and every package operation, since it's a dependency of openssh-server.

linux:/usr/share/ssh# mv blacklist.DSA-1024 blacklist.DSA-1024.inactive 
linux:/usr/share/ssh# mv blacklist.RSA-2048 blacklist.RSA-2048.inactive 
tricks/linux/ignore-vulnerable-keys-from-openssh-blacklist.txt · Last modified: 2019/05/26 15:04 (external edit)