Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
ssh: only allow strong KexAlgorithms
The defaults include "diffie-hellman-group-exchange-sha256" which has incorrect fallback behaviour which reduces its strength and is flagged as warning by ssh-audit 3.0. This adds "diffie-hellman-group16-sha512" and "diffie-hellman-group18-sha512" which are recommended by ssh-audit 3.0. PL-131620
- Loading branch information