SSH - How to Disable CBC Mode Cipher Encryption and Enable CTR or GCM Cipher MOde Encryption?

Hello Experts - Curious if someone could instruct me how to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption.  Any help or suggestions are greatly appreciated.
itsmevicAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
savoneConnect With a Mentor Commented:
You can simply add the ciphers option in the sshd_config by adding the following line:

Ciphers aes128-ctr,aes192-ctr,aes256-ctr
0
 
itsmevicAuthor Commented:
Awesome, thank you!
0
 
itsmevicAuthor Commented:
I'm assuming I can add that line anywhere in the sshd_config file?   Is there a command to save my work?   Pardon my ignorance, I'm new with Linux.

Basically, how I'm going into it now is that I'm logging in as Root, then doing a:  

# vim /etc/ssh/sshd_config it will open and ask me if I want to Open, Delete, Edit, etc the file.  I choose "E" for Edit, then I went in and added Ciphers aes128-ctr,aes192-ctr,aes256-ctr  at the very bottom of the config file, then X'd out of the terminal window, thinking it would save my changes but I'm not sure if it is or not.  When I try and go back into the config file it's telling me that it's detected a SWP file of the config file.
0
 
savoneCommented:
You have to write the file first before closing the Window.

After making the edit hit escape to get out if edit mode. Then type :wq and hit enter to save.
0
All Courses

From novice to tech pro — start learning today.