{"id":6455,"date":"2017-02-01T21:24:40","date_gmt":"2017-02-01T13:24:40","guid":{"rendered":"http:\/\/rmohan.com\/?p=6455"},"modified":"2017-02-01T21:24:58","modified_gmt":"2017-02-01T13:24:58","slug":"sshd_config-hardening","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=6455","title":{"rendered":"sshd_config hardening"},"content":{"rendered":"<p>It seems that in Debian 8 (OpenSSH 6.7), diffie-Hellman-group1-sha1 is disabled by default.<br \/>\nA client that connects via SSH receive the error:<\/p>\n<div class=\"bbCodeBlock bbCodeQuote\">\n<aside>\n<blockquote class=\"quoteContainer\">\n<div class=\"quote\">Server does not support diffie-hellman-group1-sha1 for keyexchange<\/div>\n<\/blockquote>\n<\/aside>\n<\/div>\n<p>I tried adding<\/p>\n<div class=\"bbCodeBlock bbCodeCode\">\n<div class=\"type\">Code:<\/div>\n<pre>KexAlgorithms diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sh\r\n\r\n<\/pre>\n<h2>Example<\/h2>\n<p>KexAlgorithms diffie-hellman-group-exchange-sha256,curve25519-sha256@libssh.org<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>It seems that in Debian 8 (OpenSSH 6.7), diffie-Hellman-group1-sha1 is disabled by default. A client that connects via SSH receive the error:<\/p>\n<p> Server does not support diffie-hellman-group1-sha1 for keyexchange <\/p>\n<p>I tried adding<\/p>\n<p> Code: KexAlgorithms diffie-hellman-group1-sha1,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sh Example <\/p>\n<p>KexAlgorithms diffie-hellman-group-exchange-sha256,curve25519-sha256@libssh.org<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[73],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6455"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6455"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6455\/revisions"}],"predecessor-version":[{"id":6456,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6455\/revisions\/6456"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6455"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6455"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6455"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}