Solved

SSH - How to Disable CBC Mode Cipher Encryption and Enable CTR or GCM Cipher MOde Encryption?

Posted on 2015-01-13
4
5,998 Views
Last Modified: 2015-01-14
Hello Experts - Curious if someone could instruct me how to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption.  Any help or suggestions are greatly appreciated.
0
Comment
Question by:itsmevic
  • 2
  • 2
4 Comments
 
LVL 23

Accepted Solution

by:
savone earned 500 total points
ID: 40548256
You can simply add the ciphers option in the sshd_config by adding the following line:

Ciphers aes128-ctr,aes192-ctr,aes256-ctr
0
 

Author Closing Comment

by:itsmevic
ID: 40548794
Awesome, thank you!
0
 

Author Comment

by:itsmevic
ID: 40548851
I'm assuming I can add that line anywhere in the sshd_config file?   Is there a command to save my work?   Pardon my ignorance, I'm new with Linux.

Basically, how I'm going into it now is that I'm logging in as Root, then doing a:  

# vim /etc/ssh/sshd_config it will open and ask me if I want to Open, Delete, Edit, etc the file.  I choose "E" for Edit, then I went in and added Ciphers aes128-ctr,aes192-ctr,aes256-ctr  at the very bottom of the config file, then X'd out of the terminal window, thinking it would save my changes but I'm not sure if it is or not.  When I try and go back into the config file it's telling me that it's detected a SWP file of the config file.
0
 
LVL 23

Expert Comment

by:savone
ID: 40549311
You have to write the file first before closing the Window.

After making the edit hit escape to get out if edit mode. Then type :wq and hit enter to save.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Hello to you all, I hear of many people congratulate AWS (Amazon Web Services) on how easy it is to spin up and create new EC2 (Elastic Compute Cloud) instances, but then fail and struggle to connect to them using simple tools such as SSH (Secure…
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question