Hello,
I just pentested my FreeNAS installation and found some SSH vulnerabilities I want to fix. I want to disable two options in SSH configs:
- disable none
- disable aes128-cb
I tried to uncomment the two lines in /usr/local/etc/ssh/sshd_config but after an SSH restart this file is overwritten with the standard options.
Can someone please guide me how to edit this permanently? There are "extra options" in SSH service of WebGUI where I will have to edit these options for sure. Are those options read at last so the two options
How do I have to enter the options there?
Thanks a lot for your help!
I just pentested my FreeNAS installation and found some SSH vulnerabilities I want to fix. I want to disable two options in SSH configs:
- disable none
- disable aes128-cb
I tried to uncomment the two lines in /usr/local/etc/ssh/sshd_config but after an SSH restart this file is overwritten with the standard options.
Can someone please guide me how to edit this permanently? There are "extra options" in SSH service of WebGUI where I will have to edit these options for sure. Are those options read at last so the two options
- NoneEnabled yes
- Ciphers +aes128-cbc
How do I have to enter the options there?
- NoneEnabled no
- Ciphers -aes128-cbc
Thanks a lot for your help!
