Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
hardening_enterprise_filefabric [2019_01_23 14:05] – kamran | hardening-enterprise-filefabric [2019_01_23 14:36] – ↷ Page name changed from hardening_enterprise_filefabric to hardening-enterprise-filefabric smeadmin | ||
---|---|---|---|
Line 44: | Line 44: | ||
</ | </ | ||
- | ===== SSH Settings ===== | + | ===== SSH Settings |
This is only required for EFF instances that were initially deployed as > 1901, that are configured with a low security cipher. Please make the following changes. | This is only required for EFF instances that were initially deployed as > 1901, that are configured with a low security cipher. Please make the following changes. | ||
Line 58: | Line 58: | ||
</ | </ | ||
- | with | + | with these 3 lines |
< | < | ||
+ | KexAlgorithms curve25519-sha256@libssh.org, | ||
+ | |||
Ciphers chacha20-poly1305@openssh.com, | Ciphers chacha20-poly1305@openssh.com, | ||
+ | |||
+ | MACs hmac-sha2-512-etm@openssh.com, | ||
+ | </ | ||
+ | |||
+ | After saving the file restart sshd service | ||
+ | |||
+ | < | ||
+ | systemctl restart sshd | ||
</ | </ | ||
Line 75: | Line 85: | ||
</ | </ | ||
- | ===== Remove Apache HTTPD server Configuration ===== | + | ===== Remove Apache HTTPD server Configuration |
The icons directory is listed , this is not a security risk but some scanning tools can mark it as security risk. | The icons directory is listed , this is not a security risk but some scanning tools can mark it as security risk. | ||