On Tue, 2014-02-11 at 11:19 +0000, Colin Watson wrote: > Oops, right. No real problem... I'm just a perfectionist... even regarding typos in changelogs ;) > I'll retroactively correct the changelog. (You still need > to add the HostKey entry manually on upgrades.) Actually I didn't understand that at all.. why do you need that? It seems to be that ssh looks per default at /etc/ssh/ssh_host_ed25519_key AFAIU the 6.5 release notes, ED25519, should be used per default (when client/server both support it)... but it seems the case,... the default for HostKeyAlgorithms seems to still have ECDSA first, while KexAlgorithms prefers Curve25519 now... Any idea about that? > Well, that's why I prefer to do this in the postinst rather than at boot > time as some other distributions do, as I think it's much more likely > that sufficient entropy will be available when installing packages. Sure... that's already much much better than what other distros do... but it might be still not enough in some corner cases... anyway as I said... I'm not really sure whether I'd prefer to not have that initialised at all. Cheers, Chris.
Attachment:
smime.p7s
Description: S/MIME cryptographic signature