67eb0b02ee
Add back MAC hmac-sha2-512 for ssh as it's the best supported one by current php module
2022-12-16 22:50:21 +01:00
335ee0936e
Further hardening ssh
2022-10-15 20:44:29 +02:00
893c9c6821
Disable debian banner in sshd
2022-09-28 13:37:25 +02:00
825a2967e2
Build custom libssh2 and enable hmac-sha2-512 as best matching MAC
2020-07-19 13:33:53 +02:00
401b87d3ea
Add curve25519-sha256 to KexAlgorithms
2019-05-06 20:05:16 +02:00
dfe7f7d9e7
when shell access is enabled, we shouldn't use force-command in sshd_config
2019-01-06 19:35:49 +01:00
4b25310396
Simplified sshd_config
2018-12-07 13:25:30 +01:00
e4e59782ca
Disabled RSA host key type (because small keys are generated by default), as well as ECDSA (due to suspicions of NSA-compromised P-curves). Enabled only strong key exchange, cipher, and MAC algorithms. See https://www.sshaudit.com/ and https://github.com/arthepsy/ssh-audit .
2018-11-19 15:01:11 -05:00
fa24bb61ec
Added PHP 7.2 support + minor bugfixes and performance tweaks
...
Note when applying this update you will have to update existing nginx vhosts to match new listening addresses (IPv6). Preferably you should update them to unix socket though and apply the changes to the tor hidden service config as well
2018-02-10 22:10:07 +01:00
94ef1125e2
Remove deprecated option
2017-06-24 13:17:57 +02:00
e0b35fb943
Initial commit
2017-04-30 19:32:42 +02:00
