rawsettings » Revisions »
Differences
This shows you the differences between the selected revisions of the page.
| 2018-06-22 | 2018-08-10 | ||
| TrimVMSVersions (martin) | hostkey (martin) | ||
| Line 31: | Line 31: | ||
| | ''Cipher'' | [[ui_login_ssh#encryption_options|SSH encryption cipher selection policy]] | Comma-separated list of cipher preference order, where names of ciphers are ''aes'', ''blowfish'', ''3des'', ''arcfour'' and ''des''. Token ''WARN'' is used to delimit substandard ciphers. Example: ''blowfish,aes,3des,WARN,arcfour,des'' | | | ''Cipher'' | [[ui_login_ssh#encryption_options|SSH encryption cipher selection policy]] | Comma-separated list of cipher preference order, where names of ciphers are ''aes'', ''blowfish'', ''3des'', ''arcfour'' and ''des''. Token ''WARN'' is used to delimit substandard ciphers. Example: ''blowfish,aes,3des,WARN,arcfour,des'' | | ||
| | ''KEX'' | [[ui_login_kex|Key exchange algorithm selection policy]] | Comma-separated list of KEX preference order, where names of KEXes are ''ecdh'', ''dh-gex-sha1'', ''dh-group14-sha1'', ''rsa'', and ''dh-group1-sha1''. Token ''WARN'' is used to delimit substandard KEXes. Example: ''ecdh,dh-gex-sha1,dh-group14-sha1,rsa,WARN,dh-group1-sha1'' | | | ''KEX'' | [[ui_login_kex|Key exchange algorithm selection policy]] | Comma-separated list of KEX preference order, where names of KEXes are ''ecdh'', ''dh-gex-sha1'', ''dh-group14-sha1'', ''rsa'', and ''dh-group1-sha1''. Token ''WARN'' is used to delimit substandard KEXes. Example: ''ecdh,dh-gex-sha1,dh-group14-sha1,rsa,WARN,dh-group1-sha1'' | | ||
| + | | ''==HostKey=='' | Host key algorithm selection policy | Comma-separated list of algorithm preference order, where names of algorithms are ''rsa'', ''dsa'', ''ecdsa'' and ''ed25519''. Token ''WARN'' can used to delimit substandard algorithms. Example: ''ed25519,ecdsa,rsa,dsa,WARN'' | | ||
| | ''RekeyBytes'' | [[ui_login_kex|Max data before rekey]] | | | | ''RekeyBytes'' | [[ui_login_kex|Max data before rekey]] | | | ||
| | ''AuthKI'' | [[ui_login_authentication#gssapi|Attempt keyboard-interactive authentication]] | ''0'' = Disabled, ''1'' = Enabled | | | ''AuthKI'' | [[ui_login_authentication#gssapi|Attempt keyboard-interactive authentication]] | ''0'' = Disabled, ''1'' = Enabled | | ||