#linux #sshd #ssh

SSH – new set of ciphers

In the newest versions of sshd the default available ciphers changed. If You are generating a lot of transfer through ssh You’ll probably want to speed id up by using a less resource consuming cipher.

ssh -XC -c blowfish-cbc,arcfour user@remote_host
ssh_dispatch_run_fatal: no matching cipher found

The fastest ciphers like blowfish or arcfour aren’t enabled by default now. You have to add them to the /etc/ssh/sshd_config:

Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,blowfish-cbc,aes128-cbc,3des-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc