From f2981c64295da12a8b67fb20380e7391c1979e7d Mon Sep 17 00:00:00 2001
From: Raphael Geissert <atomo64@gmail.com>
Date: Sun, 3 May 2015 21:07:27 +0200
Subject: [PATCH] Bump the minimum key size to 2048

Signed-off-by: Peter Palfrader <peter@palfrader.org>
---
 ud-mailgate | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/ud-mailgate b/ud-mailgate
index aaf1e2a..1eb42c1 100755
--- a/ud-mailgate
+++ b/ud-mailgate
@@ -323,10 +323,10 @@ def DoSSH(Str, Attrs, badkeys, uid):
    Match = SSHFingerprint.match(output)
    g = Match.groups()
 
-   if int(g[0]) < 1024 and (typekey != "ed25519"):
+   if int(g[0]) < 2048 and (typekey != "ed25519"):
       try:
          # Body
-         Subst["__ERROR__"] = "SSH keysize %s is below limit 1024" % (g[0])
+         Subst["__ERROR__"] = "SSH keysize %s is below limit 2048" % (g[0])
          ErrReply = TemplateSubst(Subst,open(TemplatesDir+"admin-info","r").read())
 
          Child = os.popen("/usr/sbin/sendmail -t","w")
@@ -338,7 +338,7 @@ def DoSSH(Str, Attrs, badkeys, uid):
          sys.exit(EX_TEMPFAIL)
 
       # And now break and stop processing input, which sends a reply to the user.
-      raise UDFormatError, "SSH keys must have at least 1024 bits, processing halted, NOTHING MODIFIED AT ALL"
+      raise UDFormatError, "SSH keys must have at least 2048 bits, processing halted, NOTHING MODIFIED AT ALL"
    elif g[1] in badkeys:
       try:
          # Body
-- 
2.20.1