ecdsa-sha2-nistp256 used for deployment
NIST P-curves are possibly back-doored by the U.S. National Security Agency. sshaudit.com
Definition of Done:
-
replace by secure algorithm
Hints:
- That SSH server was set up by GWDG Cloud provider and is hard to reconfigure. However, the client may choose a secure algorithm anyways.
- several occurences in https://gitlab.rz.htw-berlin.de/snet-asclepios-demo/snet-asclepios-deployment/-/blob/deploy-to-gwdg-vps/.gitlab-ci.yml#L42
Edited by Ilka Schulz