Re: [Debian] Re: Undesired ssh login attempts

To: debian-user@lists.debian.org
Subject: Re: [Debian] Re: Undesired ssh login attempts
From: Reco <recoverym4n@gmail.com>
Date: Mon, 11 Jun 2018 14:51:50 +0300
Message-id: <[🔎] 20180611115150.aeyifs72a7vtxfbb@p5k.home>
In-reply-to: <[🔎] 1528715552.3807.1.camel@k4vqc.com>
References: <[🔎] pfivuk$mlt$1@blaine.gmane.org> <[🔎] 20180610112712.whv7pbdnylyquha6@p5k.home> <[🔎] 1528715552.3807.1.camel@k4vqc.com>

	Hi.

On Mon, Jun 11, 2018 at 07:12:32AM -0400, Jim Popovitch wrote:
> On Sun, 2018-06-10 at 14:27 +0300, Reco wrote:
> > 
> > Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com
> 
> What's your thoughts on extending that a bit by adding aes256-ctr to
> that list?

Don't use it, unless compatibility with certain Windows SSH clients is
required. [1] is a good read on this Cipher.
What I can consider is ADEAD variety of AES, but - I'm uncertain
whenever it made its way to OpenSSH at all. It's not in Stretch's
version of openssh, that's for sure.

Reco

[1] https://crypto.stackexchange.com/questions/18538/aes256-cbc-vs-aes256-ctr-in-ssh

Reply to:

Follow-Ups:
- Re: [Debian] Re: [Debian] Re: Undesired ssh login attempts
  - From: Jim Popovitch <jim@k4vqc.com>

References:
- Undesired ssh login attempts
  - From: deloptes <deloptes@gmail.com>
- Re: Undesired ssh login attempts
  - From: Reco <recoverym4n@gmail.com>
- Re: [Debian] Re: Undesired ssh login attempts
  - From: Jim Popovitch <jim@k4vqc.com>

Prev by Date: Re: new install of amd64, 9-4 from iso #1
Next by Date: Re: xdg-email config
Previous by thread: Re: [Debian] Re: Undesired ssh login attempts
Next by thread: Re: [Debian] Re: [Debian] Re: Undesired ssh login attempts
Index(es):
- Date
- Thread