4f52dfbb8d
This completely removes client-side support for the SSH 1 protocol, which was already disabled in 12 but is still enabled in 11. For that reason, we will not be able to merge 7.6p1 or newer back to 11.
24 lines
462 B
Bash
24 lines
462 B
Bash
# $OpenBSD: brokenkeys.sh,v 1.2 2017/04/30 23:34:55 djm Exp $
|
|
# Placed in the Public Domain.
|
|
|
|
tid="broken keys"
|
|
|
|
KEYS="$OBJ/authorized_keys_${USER}"
|
|
|
|
start_sshd
|
|
|
|
mv ${KEYS} ${KEYS}.bak
|
|
|
|
# Truncated key
|
|
echo "ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEABTM= bad key" > $KEYS
|
|
cat ${KEYS}.bak >> ${KEYS}
|
|
cat $OBJ/$t.pub >> $OBJ/authorized_keys_$USER
|
|
|
|
${SSH} -F $OBJ/ssh_config somehost true
|
|
if [ $? -ne 0 ]; then
|
|
fail "ssh connect with failed"
|
|
fi
|
|
|
|
mv ${KEYS}.bak ${KEYS}
|
|
|