From 6086b0a48f7eeaf91bc12420b5cda9080413d751 Mon Sep 17 00:00:00 2001
From: Jeremy Lecour <jlecour@evolix.fr>
Date: Sun, 13 Feb 2022 20:25:16 +0100
Subject: [PATCH] Disable ecdsa-sha2 keys for SSH

---
 config/deploy.rb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/config/deploy.rb b/config/deploy.rb
index 68d7e83..9aa5b0c 100644
--- a/config/deploy.rb
+++ b/config/deploy.rb
@@ -50,3 +50,6 @@ append :linked_dirs,
 set :whenever_identifier, ->{ "#{fetch(:application)}_#{fetch(:stage)}" }
 
 set :migration_role, :app
+
+Net::SSH::Transport::Algorithms::ALGORITHMS.values.each { |algs| algs.reject! { |a| a =~ /^ecd(sa|h)-sha2/ } }
+Net::SSH::KnownHosts::SUPPORTED_TYPE.reject! { |t| t =~ /^ecd(sa|h)-sha2/ }
\ No newline at end of file