diff --git a/README.md b/README.md
index 3769a8b..e10eb85 100644
--- a/README.md
+++ b/README.md
@@ -37,7 +37,7 @@ apt-get --no-install-recommends install apt-transport-tor brotli bzip2 clamav-da
 ```
 The following command will install all required build dependencies for nginx and php:
 ```
-apt-get --no-install-recommends install -y autoconf bison g++ gcc ghostscript gnupg libargon2-dev libatomic-ops-dev libbz2-dev libbrotli-dev libc-client2007e-dev libcurl4-openssl-dev libedit-dev libenchant-dev libffi-dev libgd-dev libgmp-dev libgpg-error-dev libgpgme-dev libkrb5-dev libldap2-dev liblmdb-dev libmagickwand-dev libmariadb-dev libonig-dev libpcre3-dev libpng-dev libpspell-dev libqdbm-dev libreadline-dev libsasl2-dev libsodium-dev libsqlite3-dev libssh2-1-dev libssl-dev libsystemd-dev libtidy-dev libwebp-dev libxml2-dev libxpm-dev libxslt1-dev libzip-dev make poppler-utils re2c zlib1g-dev
+apt-get --no-install-recommends install -y autoconf bison g++ gcc ghostscript gnupg libargon2-dev libatomic-ops-dev libbz2-dev libbrotli-dev libc-client2007e-dev libcurl4-openssl-dev libedit-dev libenchant-dev libffi-dev libgd-dev libgmp-dev libgpg-error-dev libgpgme-dev libkrb5-dev libldap2-dev liblmdb-dev libmagickwand-dev libmariadb-dev libonig-dev libpcre3-dev libpng-dev libpspell-dev libqdbm-dev libreadline-dev libsasl2-dev libsodium-dev libsqlite3-dev libssl-dev libsystemd-dev libtidy-dev libtool libwebp-dev libxml2-dev libxpm-dev libxslt1-dev libzip-dev make poppler-utils re2c zlib1g-dev
 ```
 
 Note that both, debian and the torproject have hidden service package archives, so you may want to edit /etc/apt/sources.list to load from those instead:
diff --git a/etc/ssh/sshd_config b/etc/ssh/sshd_config
index ad22e86..fec8723 100644
--- a/etc/ssh/sshd_config
+++ b/etc/ssh/sshd_config
@@ -100,7 +100,7 @@ Subsystem       sftp    internal-sftp
 # Hardened set of key exchange, cipher, and MAC algorithms, as per <https://www.sshaudit.com/hardening_guides.html>.
 KexAlgorithms curve25519-sha256,curve25519-sha256@libssh.org
 Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
-MACs hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,umac-128-etm@openssh.com
+MACs hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512
 
 Match User root
         AuthenticationMethods publickey
diff --git a/install_binaries.sh b/install_binaries.sh
index 5ef2aa2..c934648 100755
--- a/install_binaries.sh
+++ b/install_binaries.sh
@@ -1,4 +1,10 @@
 #!/bin/sh
+git clone https://github.com/libssh2/libssh2
+cd libssh2
+autoreconf -fi
+CFLAGS="-O3 -march=native -mtune=native" ./configure
+make -j $(nproc) install
+cd ..
 git clone https://github.com/nginx/nginx
 cd nginx
 git clone https://github.com/google/ngx_brotli