- 1人物百度百科如何创建?人物类词条编辑指南
- 2wget使用python_Python+wget批量下载
- 3怎样把三维模型生成html文件,如何快速创建3D模型 并导出USDZ文件 在自己设备上浏览...
- 4Transformers微调BERT模型实现文本分类任务(colab)_added_tokens_decoder={0: addedtoken("[pad]", rstri
- 5Anaconda多环境多版本python配置指导_conda 切换到指定路径输入python版本,并不是环境里的版本
- 6chatGPT智能AI4.0版本正式上线!GPT4.0和3.5版本你会怎么选?
- 7小程序怎么开发?怎么开发自己的小程序_小程序开发csdn
- 8Vue中如何使用高德地图_vue-amap 离线
- 9【遗传算法】基于改进的遗传和粒子群算法求解高斯烟羽模型气体扩散优化问题含Matlab源码_高斯烟羽q源强度计算
- 10java zookeeper_Java学习之——Zookeeper
Centos7/SSH Weak Key Exchange Algorithms Enabled/SSH Server CBC Mode Ciphers Enabled
赞
踩
SSH Weak Key Exchange Algorithms Enabled
SSH Server CBC Mode Ciphers Enabled
https://knowledge.broadcom.com/external/article/263231/disabling-weak-kex-algorithms-hostkey-al.html
http://kb.ictbanking.net/article.php?id=690&oid=2
https://access.redhat.com/solutions/6963758
----------------------
# sshd -T | grep "
gssapikexalgorithms gss-gex-sha1-,gss-group1-sha1-,gss-group14-sha1-
ciphers chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256 -gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc,blowfish-cbc,cast128-cbc,3des-cbc
macs umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-et m@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac- sha2-512,hmac-sha1
kexalgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,e cdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman- group18-sha512,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha256,diffie-hellman-group 14-sha1,diffie-hellman-group1-sha1
-----------------------
# vi /etc/ssh/sshd_config
Ciphers aes128-ctr,aes192-ctr,aes256-ctr
KexAlgorithms ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha256
MACs hmac-sha2-256,hmac-sha2-512
gssapikeyexchange no
gssapiauthentication no
-----------------------
# systemctl restart sshd
----------------------
# sshd -T | grep "
gssapikexalgorithms gss-gex-sha1-,gss-group1-sha1-,gss-group14-sha1-
ciphers aes128-ctr,aes192-ctr,aes256-ctr
macs hmac-sha2-256,hmac-sha2-512
kexalgorithms ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha256
------------------------------------------------------
#sshd -T | grep gssapi
