sshd: limit server_host_key_algorithms (e.g. exclude ssh-rsa)
Thanks to https://github.com/golang/crypto/commit/eb61739cd99fb244c7cd188d3c5bae54824e781d it should be possible to restrict the host_key_algorithms
as well. This could be implemented by adding a new config option based on https://cs.opensource.google/go/x/crypto/+/master:ssh/keys.go;l=38 which could look like:
"host_key_algorithms":["rsa-sha2-512", "rsa-sha2-256", "ecdsa-sha2-nistp256", "ssh-ed25519"]
Edited by Roger Meier