Allowed key exchange algorithms
Defaults to a curated set of algorithms. Set enableRecommendedAlgorithms to false to use upstream's defaults.
Declarations
Type
null or (list of string)Default
''
if config.services.openssh.enableRecommendedAlgorithms then
[
"mlkem768x25519-sha256"
"sntrup761x25519-sha512"
"[email protected]"
"curve25519-sha256"
"[email protected]"
"diffie-hellman-group-exchange-sha256"
]
else
null;
''