Skip to content

Commit

Permalink
[stable/zed] Add SSH hardening (#1316)
Browse files Browse the repository at this point in the history 
This is an automated cherry-pick of #1300
/assign mnaser
  • Loading branch information
@vexxhost-bot
vexxhost-bot authored Jun 5, 2024
1 parent b0bef88 commit 410f511
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions images/nova-ssh/Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,3 +15,10 @@ chown -R nova: /etc/ssh
mkdir /var/run/sshd
chmod 0755 /var/run/sshd
EOF
COPY <<EOF /etc/ssh/sshd_config.d/00-hardening.conf
Ciphers aes256-ctr,aes192-ctr
MACs hmac-sha2-512,hmac-sha2-256
KexAlgorithms diffie-hellman-group-exchange-sha256
HostKeyAlgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
MaxAuthTries 3
EOF

0 comments on commit 410f511

Please sign in to comment.