Update sshd_config (#13143)

Afaik, adding these lines does nothing unless the file(s) are present. Having them in let's admins supply certs instead of relying on TOFU. Co-authored-by: zeripath <art27@cantab.net>
author: Anders Eurenius Runvald <aes@eurenius.eu> 2020-10-14 19:01:11 +0200
committer: GitHub <noreply@github.com> 2020-10-14 13:01:11 -0400
commit: 01f991ac8802b32a5ad38dd12d44ee93232e97fd (patch)
tree: 0360a2ea59099758dfa62f3d0841baaf4f112af6 /docker
parent: 36e41d4764ec35f4fc5c442e858cadf037540701 (diff)
download: gitea-01f991ac8802b32a5ad38dd12d44ee93232e97fd.tar.gz
gitea-01f991ac8802b32a5ad38dd12d44ee93232e97fd.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/docker/root/etc/templates/sshd_config b/docker/root/etc/templates/sshd_config
index 82a9c0221e..26e26feb41 100644
--- a/docker/root/etc/templates/sshd_config
+++ b/docker/root/etc/templates/sshd_config
@@ -8,9 +8,13 @@ ListenAddress ::
 LogLevel INFO
 
 HostKey /data/ssh/ssh_host_ed25519_key
+HostCertificate /data/ssh/ssh_host_ed25519_cert
 HostKey /data/ssh/ssh_host_rsa_key
+HostCertificate /data/ssh/ssh_host_rsa_cert
 HostKey /data/ssh/ssh_host_ecdsa_key
+HostCertificate /data/ssh/ssh_host_ecdsa_cert
 HostKey /data/ssh/ssh_host_dsa_key
+HostCertificate /data/ssh/ssh_host_dsa_cert
 
 AuthorizedKeysFile .ssh/authorized_keys
 AuthorizedPrincipalsFile .ssh/authorized_principals
author	Anders Eurenius Runvald <aes@eurenius.eu>	2020-10-14 19:01:11 +0200
committer	GitHub <noreply@github.com>	2020-10-14 13:01:11 -0400
commit	01f991ac8802b32a5ad38dd12d44ee93232e97fd (patch)
tree	0360a2ea59099758dfa62f3d0841baaf4f112af6 /docker
parent	36e41d4764ec35f4fc5c442e858cadf037540701 (diff)
download	gitea-01f991ac8802b32a5ad38dd12d44ee93232e97fd.tar.gz gitea-01f991ac8802b32a5ad38dd12d44ee93232e97fd.zip