1
1
I'm running into an issue where a server was upgraded to RHEL 6.5, and we have automated scripts on an RHEL 5.9 install that connects through sftp and ssh commands.
Now, the new server only supports the ciphers aes128-ctr, aes192-ctr, and aes256-ctr.
I was able to update the ssh commands to use the -c option with aes256-ctr and this worked:
ssh -c aes256-ctr ${remote_host} ${my_command}
However, when I tried do the equivalent for sftp:
sftp -oCipher=aes256-ctr ${remote_host} <<< $'get /home/me/* me/'
I am getting an error that the client does not support the same ciphers as the server:
no matching cipher found: client arcfour256,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc server aes128-ctr,aes192-ctr,aes256-ctr
These ssh and sftp command are executed on the same RHEL 5.9 box, so I'm wondering why this works for ssh and not sftp?
Also, how do fix this so I can connect using sftp without any client side changes?
you can compile openssh from source on the rhel 5.x machine, that would solve your problems. – None – 2015-05-21T15:12:42.227
you need to use
ciphers
instead ofcipher
.cipher
is for ssh protocol version 1 which you should never use. – None – 2015-05-21T15:18:34.960possible duplicate of How do I fix a cipher mismatch issue with sftp?
– Martin Prikryl – 2015-05-22T08:26:34.693