Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2025-06-26 15:40:28 -04:00
Code Issues Projects Releases Packages Wiki Activity

sshd: use mlkem768x25519-sha256 for key exchange

Browse source 
The default was switched from sntrup761x25519-sha512@openssh.com to
mlkem768x25519-sha256 in OpenSSH 10.0. It's much faster and also matches
the new default TLS key exchange algorithm for OpenSSL 3.5.0.
This commit is contained in:
Daniel Micay 2025-04-12 11:28:02 -04:00
parent 397eac82b6
commit 0b6e5e017e
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
ssh/sshd_config
View file

@ -20,7 +20,7 @@ IPQoS af21 af11
HostKey /etc/ssh/ssh_host_ed25519_key HostKey /etc/ssh/ssh_host_ed25519_key
HostKeyAlgorithms ssh-ed25519 HostKeyAlgorithms ssh-ed25519
KexAlgorithms sntrup761x25519-sha512@openssh.com KexAlgorithms mlkem768x25519-sha256
PubkeyAcceptedKeyTypes ssh-ed25519 PubkeyAcceptedKeyTypes ssh-ed25519
Ciphers aes256-gcm@openssh.com Ciphers aes256-gcm@openssh.com
MACs -* MACs -*