Disable Terrapin sensible ciphers and algorithms
ClosedPublic
Actions

Authored by dereckson on Jan 8 2024, 21:54.

Tags

None

Referenced Files

	Unknown Object (File)
	Fri, Nov 15, 08:12

	Unknown Object (File)
	Tue, Nov 12, 13:39

	Unknown Object (File)
	Mon, Nov 11, 06:34

	Unknown Object (File)
	Mon, Nov 11, 03:45

	Unknown Object (File)
	Mon, Nov 11, 03:45

	Unknown Object (File)
	Sat, Nov 9, 03:18

	Unknown Object (File)
	Mon, Nov 4, 10:43

	Unknown Object (File)
	Thu, Oct 31, 05:27

View All Files

Subscribers

None

Details

Reviewers

DorianWinty

Maniphest Tasks

T1935: OPENSSH 9.6

Commits

rOPS72f249f5686b: Disable Terrapin sensible ciphers and algorithms

Summary

All the servers include this configuration or are updated to a new version
of OpenSSH.

Instead of selecting on which server include this mitigation, we include it
everywhere so legacy clients are also protected.

Ref T1935.

Diff Detail

Repository

rOPS Nasqueron Operations

Lint

Lint Passed

Unit

No Test Coverage

Branch

terrapin-mitigation

Build Status

Buildable 5152
Build 5433: arc lint + arc unit

Event Timeline

dereckson requested review of this revision.Jan 8 2024, 21:54

dereckson created this revision.

Harbormaster completed remote builds in B5152: Diff 8384.Jan 8 2024, 21:54

DorianWinty accepted this revision.Jan 8 2024, 21:54

This revision is now accepted and ready to land.Jan 8 2024, 21:54

Closed by commit rOPS72f249f5686b: Disable Terrapin sensible ciphers and algorithms (authored by dereckson). · Explain WhyJan 8 2024, 21:54

This revision was automatically updated to reflect the committed changes.

dereckson added a commit: rOPS72f249f5686b: Disable Terrapin sensible ciphers and algorithms.

Revision Contents
Changeset List

Path

Size

roles/

core/

sshd/

files/

sshd_config

7 lines

Diff 8384

View Options

roles/core/sshd/files/sshd_config

Disable Terrapin sensible ciphers and algorithmsClosedPublicActions