itsmevic
asked on
SSH - How to Disable CBC Mode Cipher Encryption and Enable CTR or GCM Cipher MOde Encryption?
Hello Experts - Curious if someone could instruct me how to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption. Any help or suggestions are greatly appreciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I'm assuming I can add that line anywhere in the sshd_config file? Is there a command to save my work? Pardon my ignorance, I'm new with Linux.
Basically, how I'm going into it now is that I'm logging in as Root, then doing a:
# vim /etc/ssh/sshd_config it will open and ask me if I want to Open, Delete, Edit, etc the file. I choose "E" for Edit, then I went in and added Ciphers aes128-ctr,aes192-ctr,aes2 56-ctr at the very bottom of the config file, then X'd out of the terminal window, thinking it would save my changes but I'm not sure if it is or not. When I try and go back into the config file it's telling me that it's detected a SWP file of the config file.
Basically, how I'm going into it now is that I'm logging in as Root, then doing a:
# vim /etc/ssh/sshd_config it will open and ask me if I want to Open, Delete, Edit, etc the file. I choose "E" for Edit, then I went in and added Ciphers aes128-ctr,aes192-ctr,aes2
You have to write the file first before closing the Window.
After making the edit hit escape to get out if edit mode. Then type :wq and hit enter to save.
After making the edit hit escape to get out if edit mode. Then type :wq and hit enter to save.
ASKER