From 0b80d2615f0cbbb07044056ef22fb3d4d35799dc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jes=C3=BAs?= Date: Sun, 24 Oct 2021 15:48:35 -0500 Subject: SSH: config hard security --- gitolite-cgit/entrypoint.sh | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/gitolite-cgit/entrypoint.sh b/gitolite-cgit/entrypoint.sh index 04752b8..b9e0e06 100755 --- a/gitolite-cgit/entrypoint.sh +++ b/gitolite-cgit/entrypoint.sh @@ -118,9 +118,9 @@ Subsystem sftp /usr/lib/ssh/sftp-server # ForceCommand cvs server # Algorithms -Ciphers chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com -KexAlgorithms curve25519-sha256,curve25519-sha256@libssh.org,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha256 -MACs umac-128@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com +Ciphers chacha20-poly1305@openssh.com +KexAlgorithms curve25519-sha256@libssh.org +MACs hmac-sha2-512-etm@openssh.com HostKeyAlgorithms=ssh-ed25519 EOF fi -- cgit v1.2.3