From 16dae2b21a9f6ab9def2e3164c4aa79346906a37 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Thu, 23 Aug 2018 15:33:10 +0100
Subject: [PATCH] Regenerate ssh and tor keys during factory reset

---
 src/freedombone-factory-reset | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/src/freedombone-factory-reset b/src/freedombone-factory-reset
index c145bd350..767c3a721 100755
--- a/src/freedombone-factory-reset
+++ b/src/freedombone-factory-reset
@@ -149,6 +149,24 @@ if grep -q "MY_USERNAME=" "$CONFIGURATION_FILE"; then
     fi
 fi
 
+# ssh
+rm -f /etc/ssh/ssh_host_*
+dpkg-reconfigure openssh-server
+echo $'ssh host keys regenerated'
+
+# remove small moduli
+awk '$5 > 2000' /etc/ssh/moduli > ~/moduli
+mv ~/moduli /etc/ssh/moduli
+echo $'ssh small moduli removed'
+
+# regenerate tor keys
+systemctl stop tor
+$REMOVE_PACKAGES tor
+if [ -d /var/lib/tor ]; then
+    rm -rf /var/lib/tor
+fi
+$INSTALL_PACKAGES_BACKPORTS tor
+
 $REMOVE_UNUSED_PACKAGES
 $CLEAN_PACKAGES
 /bin/rm -rf /var/lib/apt/lists/*
-- 
GitLab