Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://den.raccoon.quest/notes/9mehasxqem">Dushman (dushman@den.raccoon.quest)'s status on Thursday, 23-Nov-2023 18:24:46 JST</a><a href="https://den.raccoon.quest/@dushman" title="dushman@den.raccoon.quest"><img src="https://gnusocial.jp/theme/gnusocialjp/default-avatar-stream.png" width="48" height="48" alt="Dushman" style="position: absolute; left: 0; top: 0;">Dushman</a><div><a href="https://den.raccoon.quest/notes/9meh7ncke6" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://den.raccoon.quest/@fuzzylinuxuser">@fuzzylinuxuser</a> <br>Also I recommend enforcing only modern ciphers on your ssh server as well. Just slap this in sshd config. # Ciphers and keying
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com
Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com
KexAlgorithms sntrup761x25519-sha512@openssh.com,curve25519-sha256@libssh.org,curve25519-sha256,ecdh-sha2-nistp384</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2367365#notice-4674517">In conversation</a><time datetime="2023-11-23T18:24:46+09:00" title="Thursday, 23-Nov-2023 18:24:46 JST">about a year ago</time> <span>from <span><a href="https://den.raccoon.quest/notes/9mehasxqem" rel="external" title="Sent from den.raccoon.quest via ActivityPub">den.raccoon.quest</a></span></span><a href="https://den.raccoon.quest/notes/9mehasxqem">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: www.openssh.com</div><h5><a href="https://www.openssh.com/">OpenSSH</a></h5><div></div></header><div>the main OpenSSH page</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Dushman (dushman@den.raccoon.quest)'s status on Thursday, 23-Nov-2023 18:24:46 JSTDushman
in reply to
- framebuffer :archlinux: :gentoo: :tuxspin:
@fuzzylinuxuser
Also I recommend enforcing only modern ciphers on your ssh server as well. Just slap this in sshd config. # Ciphers and keying MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com KexAlgorithms sntrup761x25519-sha512@openssh.com,curve25519-sha256@libssh.org,curve25519-sha256,ecdh-sha2-nistp384
In conversationabout a year ago from den.raccoon.questpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: www.openssh.com
  OpenSSH
  the main OpenSSH page

Public

Embed Notice

HTML Code

Corresponding Notice