Securing SSH
Jonathan Anderson
jonathan at FreeBSD.org
Mon Jan 12 02:22:05 UTC 2015
Hi,
I can't comment much on the elliptic-curve stuff, but I think it's a bit
of a stretch to say that SHA-1 isn't safe for use in a KDF.
Just my two cents,
Jon
> Greg Rivers <mailto:gcr+freebsd-security at tharned.org>
> 11 January 2015 at 21:52
> I came across an interesting article[1] about more secure SSH
> configurations. What do our resident cryptographers think about this?
> Would it make sense to adjust FreeBSD defaults accordingly?
>
> [1] https://stribika.github.io/2015/01/04/secure-secure-shell.html
>
-- Jonathan Anderson
jonathan at FreeBSD.org
More information about the freebsd-security
mailing list