marksharrison · May 31, 2022 18:50
diff --git a/sshRegenerateModuli.sh b/sshRegenerateModuli.sh
 #!/bin/sh
 # regenerate list of prime numbers to replace pre-generated list
 # marginally increases security of key exchange protocols
 # this will take hours or possibly days
 ssh-keygen -M generate -O bits=8192 moduli-8192-regenerated.candidates
 # verify regenerated list of primes are valid and not inherently weak
 ssh-keygen -M screen -f moduli-8192-regenerated.candidates moduli-8192
 # replace the original /etc/ssh/moduli file
 cp moduli-8192 /etc/ssh/moduli
 rm moduli-8192
	#!/bin/sh
	# regenerate list of prime numbers to replace pre-generated list
	# marginally increases security of key exchange protocols
	# this will take hours or possibly days
	ssh-keygen -M generate -O bits=8192 moduli-8192-regenerated.candidates
	# verify regenerated list of primes are valid and not inherently weak
	ssh-keygen -M screen -f moduli-8192-regenerated.candidates moduli-8192
	# replace the original /etc/ssh/moduli file
	cp moduli-8192 /etc/ssh/moduli
	rm moduli-8192