Differences

This shows you the differences between two versions of the page.

--- hardening-enterprise-filefabric [2024_02_28 01:03] – external edit 127.0.0.1
+++ hardening-enterprise-filefabric [2024_04_16 18:01] (current) – [SSH Settings NAA Version <= 1901] steven
@@ Line 44: / Line 44: @@
 </code>
-===== SSH Settings NAA Version <= 1901 =====
-This is only required for NAA instances that were initially deployed before 1901, that are configured with a low security cipher. Please make the following changes.
-As the root user edit the following file with the vi or nano editors:
-<code>
-vi /etc/ssh/sshd_config
-</code>
-Find and replace the following line:
-<code>
-Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,aes192-cbc,aes256-cbc
-</code>
-with these 3 lines
-<code>
-KexAlgorithms curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp384,ecdh-sha2-nistp256,diffie-hellman-group-exchange-sha256
-Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
-MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com
-</code>
-After saving the file restart sshd service
-<code>
-systemctl restart sshd
-</code>
 ===== Disable CloudFTP =====