Update SECURITY.md: list the SSH fingerprint

This commit is contained in:
Jeroen 2023-09-25 21:04:23 +02:00
parent 4bbf63f77a
commit 1946717026
Signed by: jeroen
GPG Key ID: 7C7028F783798BAB

View File

@ -32,6 +32,7 @@ This Gitea instance is configured following best practices, in order to thwart l
- Official commits (eg, in the `laylo/docs` repository) are GPG signed, and MFA is enforced for accounts with write access.
- Backups are made every 24 hours, using a 'pull mechanism'. This server does **NOT** have access to the backup repository.
- SSH is hardened (PKI authentication, MFA via hardware tokens).
- The SSH fingerprint is: `SHA256:Uo+OE0V8yAMWTT0jyJrROJcJ5S9TmCnp3evQQ7xL538`.
- SSH ciphers are hardened, these are in use:
```