How to disable SSH arcfour cipher on HP Server Automation


Some of the security concerns, you may need to change  SSH’s cipher/MAC and key algorithms on HP Server Automation(port 2222). I added basic steps about how to change these configurations for  Unix and Linux.

Take a backup of opsware  sshd 

#cp /etc/opt/opsware/sshd/sshd_config  /etc/opt/opsware/sshd/sshd_config_cipherChangeBackup

Disable ciphers 

#vi cp /etc/opt/opsware/sshd/sshd_config

change it from : 

Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,arcfour

to:

Ciphers aes128-ctr,aes192-ctr,aes256-ctr

Restart  Opsware  agent

#/etc/init.d/opsware-sas restart

Check if cipher

#ssh  -vvvv  -p  2222 <IP_Address>

 

I'm a IT Infrastructure and Operations Architect with extensive experience and administration skills and works for Turk Telekom. I provide hardware and software support for the IT Infrastructure and Operations tasks.

205 Total Posts
Follow Me