Back to OpenSSH HMAC: SHA1 -> SHA2-512 (suggested by duraconf)

author: Silvio Rhatto <rhatto@riseup.net> 2014-08-19 13:40:41 -0300
committer: Silvio Rhatto <rhatto@riseup.net> 2014-08-19 13:40:41 -0300
commit: 0b3b27b577de7daf6c0259bd2190b33d8f624cb1 (patch)
tree: 7c6de76de467bb0a6ee56d18a12334180d6d0a24 /templates/sshd_config/CentOS.erb
parent: ad030e74efe9249b59ef6fdb58fca8d9d562cc11 (diff)
download: puppet-sshd-0b3b27b577de7daf6c0259bd2190b33d8f624cb1.tar.gz
puppet-sshd-0b3b27b577de7daf6c0259bd2190b33d8f624cb1.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/templates/sshd_config/CentOS.erb b/templates/sshd_config/CentOS.erb
index 0f4bb1f..7498517 100644
--- a/templates/sshd_config/CentOS.erb
+++ b/templates/sshd_config/CentOS.erb
@@ -146,7 +146,7 @@ AllowGroups <%= s %>
 
 <% if scope.lookupvar('sshd::hardened_ssl') == 'yes' -%>
 Ciphers aes256-ctr
-MACs hmac-sha1
+MACs hmac-sha2-512
 <% end -%>
 
 <% unless (s=scope.lookupvar('sshd::tail_additional_options')).empty? -%>
author	Silvio Rhatto <rhatto@riseup.net>	2014-08-19 13:40:41 -0300
committer	Silvio Rhatto <rhatto@riseup.net>	2014-08-19 13:40:41 -0300
commit	0b3b27b577de7daf6c0259bd2190b33d8f624cb1 (patch)
tree	7c6de76de467bb0a6ee56d18a12334180d6d0a24 /templates/sshd_config/CentOS.erb
parent	ad030e74efe9249b59ef6fdb58fca8d9d562cc11 (diff)
download	puppet-sshd-0b3b27b577de7daf6c0259bd2190b33d8f624cb1.tar.gz puppet-sshd-0b3b27b577de7daf6c0259bd2190b33d8f624cb1.tar.bz2