On Wed, 6 Apr 2022, Keine Eile wrote: > Hi list members, > > is there a best practice setting Ciphers, GSSAPIKexAlgorithms, KexAlgorithms, > HostKeyAlgorithms, PubkeyAcceptedKeyTypes and CASignatureAlgorithms in one > shot in a secure manner? If this would look pretty, like this 'modern' styles > you get from https://ssl-config.mozilla.org/, this would be the cherry on top. If you run a current release of OpenSSH then you get secure defaults :) _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev