duraconf icon indicating copy to clipboard operation
duraconf copied to clipboard

Published 20 hours ago verified publisher icon ioerror

Added hardended SSH client preferences

Open GigabyteProductions opened this issue 9 years ago • 2 comments

There is already a hardened SSH server configuration file, but this new SSH client configuration file will make OpenSSH SSH client prefer stronger ciphers and MACs when the server in question doesn't enforce stronger ciphers and MACs.

GigabyteProductions avatar Jun 21 '15 18:06 GigabyteProductions

Maybe this should also change the HostKeyAlgorithms setting?

https://wiki.mozilla.org/Security/Guidelines/OpenSSH#Modern

fmarier avatar Jun 21 '15 19:06 fmarier

Ah, I thought I was missing that somewhere, but for some reason, I was thinking that was an sshd_config setting.

GigabyteProductions avatar Jun 21 '15 19:06 GigabyteProductions