From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH v2 4/4] OpenSSH: Order symmetric ciphers by strength
Date: Sat, 21 Sep 2024 15:30:00 +0000
Message-ID: <20240921153000.706916-4-peter.mueller@ipfire.org>
In-Reply-To: <20240921153000.706916-1-peter.mueller@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============7787957877928140455=="
List-Id: <development.lists.ipfire.org>

--===============7787957877928140455==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

We also wish to prefer AES over Chacha/Poly, given the
prevalence of hardware accelaration for the former.

Signed-off-by: Peter M=C3=BCller <peter.mueller(a)ipfire.org>
---
 config/ssh/ssh_config  | 2 +-
 config/ssh/sshd_config | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/config/ssh/ssh_config b/config/ssh/ssh_config
index 86f123e28..d5f63f315 100644
--- a/config/ssh/ssh_config
+++ b/config/ssh/ssh_config
@@ -10,7 +10,7 @@ Host *
=20
         # Only use secure crypto algorithms
         KexAlgorithms sntrup761x25519-sha512,sntrup761x25519-sha512(a)openss=
h.com,mlkem768x25519-sha256,curve25519-sha256,curve25519-sha256(a)libssh.org,=
diffie-hellman-group-exchange-sha256
-        Ciphers chacha20-poly1305(a)openssh.com,aes256-gcm(a)openssh.com,aes=
128-gcm(a)openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
+        Ciphers aes256-gcm(a)openssh.com,aes256-ctr,chacha20-poly1305(a)open=
ssh.com,aes192-ctr,aes128-gcm(a)openssh.com,aes128-ctr
         MACs hmac-sha2-512-etm(a)openssh.com,hmac-sha2-256-etm(a)openssh.com=
,umac-128-etm(a)openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128(a)openssh.com
=20
         # Always visualise server host keys (helps to identify key based MIT=
M attacks)
diff --git a/config/ssh/sshd_config b/config/ssh/sshd_config
index 421416705..e338f8cef 100644
--- a/config/ssh/sshd_config
+++ b/config/ssh/sshd_config
@@ -21,7 +21,7 @@ MaxStartups 5
=20
 # Only allow safe crypto algorithms
 KexAlgorithms sntrup761x25519-sha512,sntrup761x25519-sha512(a)openssh.com,ml=
kem768x25519-sha256,curve25519-sha256,curve25519-sha256(a)libssh.org,diffie-h=
ellman-group-exchange-sha256
-Ciphers chacha20-poly1305(a)openssh.com,aes256-gcm(a)openssh.com,aes128-gcm(=
a)openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
+Ciphers aes256-gcm(a)openssh.com,aes256-ctr,chacha20-poly1305(a)openssh.com,=
aes192-ctr,aes128-gcm(a)openssh.com,aes128-ctr
 MACs hmac-sha2-512-etm(a)openssh.com,hmac-sha2-256-etm(a)openssh.com,umac-12=
8-etm(a)openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128(a)openssh.com
=20
 # Only allow cryptographically safe SSH host keys (adjust paths if needed)
--=20
2.39.5


--===============7787957877928140455==--