For SSH we have two security modes, the first “Normal” is for greater compatibility (and less security) and the second is “High”. The high level provides a more locked down environment by using more secure KexAlgorithms.
You can access this from the main menu by enter /n and then 22.
In the submenu select option 3 for security access to choose between Normal and High.
SSH ACCESS: [Shared]
- Enable: On
- Port: 22
- Security Level: Normal
- SSH View Port Enable: Off
- SSH View Port Bidirection: Off
When set to High, the box is set to the following:
KexAlgorithms
diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,curve25519-sha256@libssh.org
MACs
umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com
When set to Normal, The box is set to the following
3des-cbc, aes128-cbc, aes192-cbc, aes256-cbc, aes128-ctr, aes192-ctr, aes256-ctr, aes128-gcm@openssh.com, aes256-gcm@openssh.com, chacha20-poly1305@openssh.com
*The SSH key size is 2048