However after doing this, and restarting ssh, I get this error :
Code:
/etc/ssh/sshd_config line 88: Bad SSH2 cipher spec 'aes128-ctr,aes192-ctr,aes256-ctr'
Also, I am not able to ssh into the server anymore.
Please provide a suggestion on how to disable the CBC option and enable the CTR/GCM option without causing problems.
The sshd_config file in the server is sshd_config(4) and thus does not support CTR/GCM.
Location: Asia Pacific, Cyberspace, in the Dark Dystopia
Posts: 19,118
Thanks Given: 2,351
Thanked 3,359 Times in 1,878 Posts
According to the sshd_config man page (ubuntu):
Code:
Ciphers
Specifies the ciphers allowed. Multiple ciphers must be comma-separated. If the
specified value begins with a ‘+' character, then the specified ciphers will be
appended to the default set instead of replacing them.
The supported ciphers are:
3des-cbc
aes128-cbc
aes192-cbc
aes256-cbc
aes128-ctr
aes192-ctr
aes256-ctr
aes128-gcm@openssh.com
aes256-gcm@openssh.com
arcfour
arcfour128
arcfour256
blowfish-cbc
cast128-cbc
chacha20-poly1305@openssh.com
The default is:
chacha20-poly1305@openssh.com,
aes128-ctr,aes192-ctr,aes256-ctr,
aes128-gcm@openssh.com,aes256-gcm@openssh.com
The list of available ciphers may also be obtained using the -Q option of ssh(1)
with an argument of “cipher”¯.
Hi Guys
After installing my CentOS in virtual machine i am not able to get the graphical mode. By default it is going in TUI mode.
Please help how to get the graphical mode by default.
I am already in init 5.....
Thanks...:wall: (1 Reply)
Hello all friends
I recently disable runlevel 1
i want to know , is there any way to disable emergency mode and init mode
init mode means if any user pass kernel parameter at grub i.e init=/bin/bash
then bash shell appears
I want to disable it for security purpose
System = Debian 6... (4 Replies)
I have a v490 server running Solaris 10.
Everytime I reboot this machine, the console-login service goes to maintainance mode and I have to provide the root password. All the other dependencies are running fine and nothing there in the logs too. To bring it online, I have to enable it manually.
... (1 Reply)
Hi Experts,
I am using ubuntu.When i am trying to login it is showing grub ..How i can overcome to this problem..Pls reply me ASAP..
Thanks,
Sree (1 Reply)
Ok guys,
I'm just getting back to this amongst several other projects, but I thought I'd re-address it. I'm creating the script to disable windows from the previous login under 10.7. In order to do this it seems I need to create the same script for applications that launch and create the... (6 Replies)
Hello!
I'm going through security checklist for AIX 5.3 and i just can't disable remote login for root through ssh.
What i did:
- in /etc/security/user i added a line:
rlogin = false
which works fine when i try to login through telnet
- after installation of openSSH i edited... (3 Replies)
Hy,
Coud someone tell me how to disable root login via terminal (only from console should be allowed).
There is no ssh installed, only telnet.
I created a user which will have permission to su to root, but now i don't know where and what to modify to disable root login?
SCO OpenServer 5
... (1 Reply)