diff options
| author | Daniil Baturin <daniil@vyos.io> | 2024-07-02 16:14:35 +0200 | 
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-07-02 16:14:35 +0200 | 
| commit | 1cb9ed755a0b35e7180b21f36d293dd78af2f460 (patch) | |
| tree | 28fe2fa1f62bd67c54b2b2a782ecd874edb5c5b8 /docs | |
| parent | 8897462851cc9cff64404c5803d254c3b5f58b29 (diff) | |
| parent | d595e52be6d2cec07e910628b86f09c0734d6b26 (diff) | |
| download | vyos-documentation-1cb9ed755a0b35e7180b21f36d293dd78af2f460.tar.gz vyos-documentation-1cb9ed755a0b35e7180b21f36d293dd78af2f460.zip | |
Merge pull request #1492 from HollyGurza/T5878
ssh: T5878: Allow changing the PubkeyAcceptedAlgorithms option
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/configuration/service/ssh.rst | 19 | 
1 files changed, 19 insertions, 0 deletions
| diff --git a/docs/configuration/service/ssh.rst b/docs/configuration/service/ssh.rst index efdbc651..d3ca51b5 100644 --- a/docs/configuration/service/ssh.rst +++ b/docs/configuration/service/ssh.rst @@ -109,6 +109,25 @@ Configuration    Specify name of the :abbr:`VRF (Virtual Routing and Forwarding)` instance. +.. cfgcmd:: set service ssh pubkey-accepted-algorithm <name> + +  Specifies the signature algorithms that will be accepted for public key +  authentication + +  List of supported algorithms: ``ssh-ed25519``, +  ``ssh-ed25519-cert-v01@openssh.com``, ``sk-ssh-ed25519@openssh.com``, +  ``sk-ssh-ed25519-cert-v01@openssh.com``, ``ecdsa-sha2-nistp256``, +  ``ecdsa-sha2-nistp256-cert-v01@openssh.com``, ``ecdsa-sha2-nistp384``, +  ``ecdsa-sha2-nistp384-cert-v01@openssh.com``, ``ecdsa-sha2-nistp521``, +  ``ecdsa-sha2-nistp521-cert-v01@openssh.com``, +  ``sk-ecdsa-sha2-nistp256@openssh.com``, +  ``sk-ecdsa-sha2-nistp256-cert-v01@openssh.com``, +  ``webauthn-sk-ecdsa-sha2-nistp256@openssh.com``, +  ``ssh-dss``, ``ssh-dss-cert-v01@openssh.com``, ``ssh-rsa``, +  ``ssh-rsa-cert-v01@openssh.com``, ``rsa-sha2-256``, +  ``rsa-sha2-256-cert-v01@openssh.com``, ``rsa-sha2-512``, +  ``rsa-sha2-512-cert-v01@openssh.com`` +  Dynamic-protection  ==================  Protects host from brute-force attacks against | 
