diff options
-rw-r--r-- | README.md | 8 |
1 files changed, 1 insertions, 7 deletions
@@ -10,18 +10,12 @@ This repository contains an hardened version of the default OpenSSH client and s | |||
10 | Installation | 10 | Installation |
11 | ------------ | 11 | ------------ |
12 | 12 | ||
13 | - `groupadd ssh-user` and `usermod -a -G ssh-user <username>` for each user allowed to use SSH. | ||
14 | - Deploy user public keys before continuing | 13 | - Deploy user public keys before continuing |
14 | - `groupadd ssh-user` and `usermod -a -G ssh-user <username>` for each user allowed to use SSH. | ||
15 | - Clone this repo into `/etc/ssh/` | 15 | - Clone this repo into `/etc/ssh/` |
16 | - Regenerate `ssh_host_rsa_key{,.pub}` of length 4096 if lower (`ssh-keygen -t rsa -b 4096 -f ssh_host_rsa_key < /dev/null`) | 16 | - Regenerate `ssh_host_rsa_key{,.pub}` of length 4096 if lower (`ssh-keygen -t rsa -b 4096 -f ssh_host_rsa_key < /dev/null`) |
17 | 17 | ||
18 | 18 | ||
19 | ### Debian specific | ||
20 | |||
21 | - Comment unsupported parameter `KexDHMin 4096` in `ssh{,d}_config` | ||
22 | - `ln -s /usr/lib/openssh /usr/lib/ssh` | ||
23 | |||
24 | |||
25 | References | 19 | References |
26 | ---------- | 20 | ---------- |
27 | 21 | ||