Visit The New, Modern Unix Linux Community


Disabling CBC Cipher mode causes login problems


 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Disabling CBC Cipher mode causes login problems
# 8  
I tried the last suggestion, and the server fails to come up (Network Connection time out error) when I try to login via the putty (ssh).

--- Post updated at 05:15 PM ---

I tried this solution, however after I make the changes and restart ssh, I am unable to login to the server (Network Connection time out error).
# 9  
When system admins make sshd config changes to a remote server they do not logout of their working session before they confirm the changes work..

For example, if you are logged into a server and make changes to sshd, you do not log out of that session.

Code:
server:/var/www/ads# ssh me@remote.example.com
me@remove.example.com's password: 
Last login: Thu May  9 08:14:30 2019 from 139.112.217.44
me@remote:~$ sudo -i
[sudo] password for me: 
// make changes to ssh configation
remote:~# service sshd restart

You are still logged to the remote server.

Now try to ssh again from another terminal.

Or alternatively, you can run sshd on another port with another configuration file, for example on some (linux) systems;

Code:
sshd [-46DdeiqTt] [-b bits] [-C connection_spec] [-f config_file] [-g login_grace_time] [-h host_key_file] [-k key_gen_time] [-o option] [-p port] [-u len]

So, it is not really wise, or at least it is not how I would make sshd changes, to make changes in your config without testing them first.

Code:
sshd  [-f config_file]  [-p port]

You can run and test sshd on any open port you like.
# 10  
Hi,

I tried this solution, and I did not log out from session where I made the changes before opening a new session.
But it still does not work. I cannot ssh into the server anymore. "Network Error: Connection Refused" error.

Regards,
Aigini

Previous Thread | Next Thread
Thread Tools Search this Thread
Search this Thread:
Advanced Search

Test Your Knowledge in Computers #372
Difficulty: Easy
The Ericsson implementation of Erlang uses DREAM bytecodes.
True or False?

9 More Discussions You Might Find Interesting

1. Solaris

Need to disable CBC mode cipher encryption along with MD5 & 96 bit MAC algorithm

Hi All Is any one know how to diable CBC mode cipher encryption along with MD5 & 96 bit MAC algorithm in solaris 10. Regards (4 Replies)
Discussion started by: amity
4 Replies

2. Linux

Not able to login in graphical mode

Hi Guys After installing my CentOS in virtual machine i am not able to get the graphical mode. By default it is going in TUI mode. Please help how to get the graphical mode by default. I am already in init 5..... Thanks...:wall: (1 Reply)
Discussion started by: deviltech
1 Replies

3. Debian

Disabling emergency and init mode

Hello all friends I recently disable runlevel 1 i want to know , is there any way to disable emergency mode and init mode init mode means if any user pass kernel parameter at grub i.e init=/bin/bash then bash shell appears I want to disable it for security purpose System = Debian 6... (4 Replies)
Discussion started by: rink
4 Replies

4. Solaris

Console-login in maintainance mode

I have a v490 server running Solaris 10. Everytime I reboot this machine, the console-login service goes to maintainance mode and I have to provide the root password. All the other dependencies are running fine and nothing there in the logs too. To bring it online, I have to enable it manually. ... (1 Reply)
Discussion started by: aksijain
1 Replies

5. Ubuntu

Login Problems when the system is grub mode

Hi Experts, I am using ubuntu.When i am trying to login it is showing grub ..How i can overcome to this problem..Pls reply me ASAP.. Thanks, Sree (1 Reply)
Discussion started by: sree vasu
1 Replies

6. OS X (Apple)

Script Implementation for Disabling Re-Opening Previous Login

Ok guys, I'm just getting back to this amongst several other projects, but I thought I'd re-address it. I'm creating the script to disable windows from the previous login under 10.7. In order to do this it seems I need to create the same script for applications that launch and create the... (6 Replies)
Discussion started by: unimachead
6 Replies

7. AIX

disabling telnet login for root only

Hi, I want to disable telnet login for root only so that other users can telnet? Regards, Manoj (8 Replies)
Discussion started by: manoj.solaris
8 Replies

8. AIX

Problems with disabling remote root login

Hello! I'm going through security checklist for AIX 5.3 and i just can't disable remote login for root through ssh. What i did: - in /etc/security/user i added a line: rlogin = false which works fine when i try to login through telnet - after installation of openSSH i edited... (3 Replies)
Discussion started by: veccinho
3 Replies

9. SCO

Disabling root login

Hy, Coud someone tell me how to disable root login via terminal (only from console should be allowed). There is no ssh installed, only telnet. I created a user which will have permission to su to root, but now i don't know where and what to modify to disable root login? SCO OpenServer 5 ... (1 Reply)
Discussion started by: veccinho
1 Replies

Featured Tech Videos