Update SECURITY.md: put the ciphers in a code block

This commit is contained in:
Jeroen 2022-08-23 11:30:43 +02:00
parent a924bcf6e7
commit 9d20b0e80f
Signed by: jeroen
GPG Key ID: 7C7028F783798BAB

View File

@ -29,7 +29,9 @@ This Gitea instance is configured following best practices, in order to thwart l
- SSH is hardened (PKI authentication, MFA via hardware tokens). - SSH is hardened (PKI authentication, MFA via hardware tokens).
- SSH ciphers are hardened, these are in use: - SSH ciphers are hardened, these are in use:
```
Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group18-sha512,diffie-hellman-group16-sha512 KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group18-sha512,diffie-hellman-group16-sha512
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com
HostKeyAlgorithms ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-512,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com HostKeyAlgorithms ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-512,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com
```