[Ach] OpenSSH

[Kurt Roeckx]

Hi,

Reading the section about OpenSSH I have the following comments:

You have "Protocol 2" and "ServerKeyBits 4096".  As far as I know
ServerKeyBits only applies to protocol 1.

You can check the size of your key with:
ssh -l -f /etc/ssh/ssh_host_rsa_key and you should generate a new
one if it still says 1024.

The document says to check test with "-vvv" and observer the output.  It
would be good that it actually said what to look for.

(I'm a bit surprised by the defaults.)


Kurt