Limit SSHFP records to RSA keys
authorTom Hughes <tom@compton.nu>
Sat, 8 Feb 2020 16:27:56 +0000 (16:27 +0000)
committerTom Hughes <tom@compton.nu>
Sat, 8 Feb 2020 16:27:56 +0000 (16:27 +0000)
bin/mksshfp

index 7c0f518..362cd87 100755 (executable)
@@ -18,8 +18,7 @@ if (-f "/etc/ssh/ssh_known_hosts")
             my $type = $3;
             my $value = $4;
 
-            if ($type == 2 &&
-                ($algorithm == 3 || $algorithm == 4))
+            if ($type == 2 && $algorithm == 1)
             {
                 print SSHFP_JS qq|  SSHFP("${host}", ${algorithm}, ${type}, "${value}"),\n|;
             }