Merge pull request #31 in IAAS/cis-hardening from dev/cherlin/update-cis-scripts to master

* commit 'f97fbb47f701fd81a6dcdabb1d2e961943386eb5':
  Update ciphers list in 9.3.11 with latest chacha20 and gcm ciphers
This commit is contained in:
Thibault Dewailly 2017-12-05 11:38:15 +01:00
commit 6977eb5064

View File

@ -14,7 +14,7 @@ set -u # One variable unset, it's over
HARDENING_LEVEL=2 HARDENING_LEVEL=2
PACKAGE='openssh-server' PACKAGE='openssh-server'
OPTIONS='Ciphers=aes128-ctr,aes192-ctr,aes256-ctr' OPTIONS='Ciphers=chacha20-poly1305@openssh\.com,aes256-gcm@openssh\.com,aes128-gcm@openssh\.com,aes256-ctr,aes192-ctr,aes128-ctr'
FILE='/etc/ssh/sshd_config' FILE='/etc/ssh/sshd_config'
# This function will be called if the script status is on enabled / audit mode # This function will be called if the script status is on enabled / audit mode