Hi list members, is there a best practice setting Ciphers, GSSAPIKexAlgorithms, KexAlgorithms, HostKeyAlgorithms, PubkeyAcceptedKeyTypes and CASignatureAlgorithms in one shot in a secure manner? If this would look pretty, like this 'modern' styles you get from https://ssl-config.mozilla.org/, this would be the cherry on top. Thanks!
On Wed, 6 Apr 2022, Keine Eile wrote:> Hi list members, > > is there a best practice setting Ciphers, GSSAPIKexAlgorithms, KexAlgorithms, > HostKeyAlgorithms, PubkeyAcceptedKeyTypes and CASignatureAlgorithms in one > shot in a secure manner? If this would look pretty, like this 'modern' styles > you get from https://ssl-config.mozilla.org/, this would be the cherry on top.If you run a current release of OpenSSH then you get secure defaults :)