diff options
| author | Damien Miller <djm@cvs.openbsd.org> | 2015-07-03 03:49:46 +0000 |
|---|---|---|
| committer | Damien Miller <djm@cvs.openbsd.org> | 2015-07-03 03:49:46 +0000 |
| commit | cbafc2ed79c1bfbda6dc3967e99f6a79b51fc36f (patch) | |
| tree | 9f76e58563a921d09a675f817713cf153f9edc61 /usr.bin/ssh/sshd.c | |
| parent | b31b15a1f34dad08dd4c3ffe70e735e9eea380fa (diff) | |
refuse to generate or accept RSA keys smaller than 1024 bits;
feedback and ok dtucker@
Diffstat (limited to 'usr.bin/ssh/sshd.c')
| -rw-r--r-- | usr.bin/ssh/sshd.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/usr.bin/ssh/sshd.c b/usr.bin/ssh/sshd.c index 3fd410ab41a..d1761df014a 100644 --- a/usr.bin/ssh/sshd.c +++ b/usr.bin/ssh/sshd.c @@ -1,4 +1,4 @@ -/* $OpenBSD: sshd.c,v 1.452 2015/07/03 03:47:00 djm Exp $ */ +/* $OpenBSD: sshd.c,v 1.453 2015/07/03 03:49:45 djm Exp $ */ /* * Author: Tatu Ylonen <ylo@cs.hut.fi> * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland @@ -1760,8 +1760,8 @@ main(int ac, char **av) #ifdef WITH_SSH1 /* Check certain values for sanity. */ if (options.protocol & SSH_PROTO_1) { - if (options.server_key_bits < 512 || - options.server_key_bits > 32768) { + if (options.server_key_bits < SSH_RSA_MINIMUM_MODULUS_SIZE || + options.server_key_bits > OPENSSL_RSA_MAX_MODULUS_BITS) { fprintf(stderr, "Bad server key size.\n"); exit(1); } |