• @[email protected]
    link
    fedilink
    411 months ago

    Why use CBC too? Cha-Cha20-Poly1305 is an AEAD, so both an assymetric plus a symmetric stream cipher.

    • @thisisawayoflife
      link
      4
      edit-2
      11 months ago

      Just checked my own sshd configs and I don’t use CBC in them. I’ve based the kex/cipher/Mac configs off of cipherlist.eu and the mozilla docs current standards. Guess it pays to never use default configs for sshd if it’s ever exposed to the Internet.

      Edit: I read it wrong. It’s chacha20 OR CBC. I rely heavily on the former with none of the latter.