From 95214b0fb2a085c8651e35d90b8478e3a20bb9a1 Mon Sep 17 00:00:00 2001
From: FrozenFOXX <frozenfoxx@churchoffoxx.net>
Date: Thu, 14 Feb 2019 11:05:02 -0800
Subject: [PATCH 1/3] Update config.js

Updated the OpenSSL command to use aes256 over des3.
---
 core/config.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/config.js b/core/config.js
index 62ce6032..67ac3d56 100644
--- a/core/config.js
+++ b/core/config.js
@@ -218,13 +218,13 @@ function getDefaultConfig() {
 				//	Private key in PEM format
 				//
 				//	Generating your PK:
-				//	> openssl genrsa -des3 -out ./config/ssh_private_key.pem 2048
+				//	> openssl genrsa -aes256 -out ./config/ssh_private_key.pem 2048
 				//
 				//	Then, set servers.ssh.privateKeyPass to the password you use above
 				//	in your config.hjson
 				//
 				privateKeyPem		: paths.join(__dirname, './../config/ssh_private_key.pem'),
-				firstMenu			: 'sshConnected',
+				firstMenu		: 'sshConnected',
 				firstMenuNewUser	: 'sshConnectedNewUser',
 			},
 			webSocket : {

From 66bd2ce10849039b1a6912e466287b6029b6c19d Mon Sep 17 00:00:00 2001
From: FrozenFOXX <frozenfoxx@churchoffoxx.net>
Date: Fri, 15 Feb 2019 10:15:37 -0800
Subject: [PATCH 2/3] Downgraded to AES128

Downgraded to AES128, AES256 does not currently seem to work.
---
 core/config.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/config.js b/core/config.js
index 67ac3d56..4fcb0fbe 100644
--- a/core/config.js
+++ b/core/config.js
@@ -218,7 +218,7 @@ function getDefaultConfig() {
 				//	Private key in PEM format
 				//
 				//	Generating your PK:
-				//	> openssl genrsa -aes256 -out ./config/ssh_private_key.pem 2048
+				//	> openssl genrsa -aes128 -out ./config/ssh_private_key.pem 2048
 				//
 				//	Then, set servers.ssh.privateKeyPass to the password you use above
 				//	in your config.hjson

From fd514e9613f6d50eced615540055645c7aa05245 Mon Sep 17 00:00:00 2001
From: FrozenFOXX <frozenfoxx@churchoffoxx.net>
Date: Fri, 15 Feb 2019 11:38:33 -0800
Subject: [PATCH 3/3] Added better description of options for SSH keys

---
 core/config.js | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/core/config.js b/core/config.js
index 4fcb0fbe..ad6b6e5f 100644
--- a/core/config.js
+++ b/core/config.js
@@ -218,7 +218,16 @@ function getDefaultConfig() {
 				//	Private key in PEM format
 				//
 				//	Generating your PK:
-				//	> openssl genrsa -aes128 -out ./config/ssh_private_key.pem 2048
+				//      Choose a cipher (3DES, AES128, or AES256) and a bit strength (2048 or 4096)
+                                //      Ciphers:
+				//        3des: older, most compatible, least secure
+				//        aes128: newer, widely compatible, fairly secure
+				//        aes256: newest, least compatible, best security
+				//      Bit strength:
+				//        2048: most compatible, decent strength
+				//        4096: stronger, but some software is completely incompatible
+                                //      Sample command:
+				//	  openssl genrsa -aes128 -out ./config/ssh_private_key.pem 2048
 				//
 				//	Then, set servers.ssh.privateKeyPass to the password you use above
 				//	in your config.hjson