Em 24-07-2015 14:27, Kevin Chadwick escreveu: > The guidance is to use pubkey or long passwords in which case you > should either have no problem or notice the cpu cycles if your an admin > worth any salt. There are tons of info regarding OpenSSH best practices. The link bellow [1] is one of them. I personally let my servers with only the state of the art, which currently is ed25519 for both PubKeys and HostKeys, chacha for cipher, curve25519 for kex and hmac-etm for mac.
[1] https://wiki.mozilla.org/Security/Guidelines/OpenSSH
