[Implemented] Improve SSH Diffie-Hellman KEX Options
Posted: Fri Jul 02, 2021 6:44 pm
Currently it seems Unimus only supports Diffie-Hellman key exchange with 2048-bits maximum. While this is currently an acceptable minimum, many platforms like FortiOS are no longer supporting 2048-bit key exchange by default for their 'hardened' administrative configurations:
https://docs.fortinet.com/document/fort ... encryption
While all of the other key exchange mechanisms work with the hardened configuration, 4096-bit and 8192-bit encryption is not supported by Unimus currently.
https://docs.fortinet.com/document/fort ... encryption
While all of the other key exchange mechanisms work with the hardened configuration, 4096-bit and 8192-bit encryption is not supported by Unimus currently.