Thought This Was Cool (+OpenSSH Config)

Daily NSA Edit: http://www.theguardian.com/world/2013/sep/05/nsa-how-to-remain-secure-surveillance

and another one! http://prism-break.org

To choose a specific set of ciphers, hashes, and key exchanges for your OpenSSH server:

rm -fv *ec*key*

sshd_config

# Strongest
HostKey        /usr/local/etc/ssh_host_rsa_key
KexAlgorithms  diffie-hellman-group-exchange-sha256
Ciphers        aes256-cbc,aes256-ctr
MACs           hmac-sha2-512,hmac-sha2-256

# Tunneling
TCPKeepAlive     yes
PermitRootLogin  yes
PermitTunnel     point-to-point

3 thoughts on “Thought This Was Cool (+OpenSSH Config)

  1. Pingback: Finally Able To Run My Own WPA2-AES EAP-TTLS FreeRadius Server (RasPi) | Jon's FOSS Blog ~
  2. Pingback: Quick Blog Summary | Jon's FOSS Blog ~
  3. Pingback: Quick Blog Summary | Jon's FOSS Blog ~

Leave a reply to Finally Able To Run My Own WPA2-AES EAP-TTLS FreeRadius Server (RasPi) | Jon's FOSS Blog Cancel reply