Georgia SoftWorks
Try the Georgia SoftWorks SSH Server
For Free Today!

Specify Ciphers / Encryption Algorithms for SSH Server | 2022

Select SSH Server Ciphers / Encryption Algorithms

Specify the ciphers available to the server that are offered to the client. The ciphers are available to the client in the server’s default order unless specified. The default order will vary from release to release to deliver the best blend of security and performance.

Specify the ciphers that the server can offer to the client by modifying the registry key szCiphers.

The key is:

The following is the default list of ciphers.
aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes192-ctr,3descbc,aes128-ctr,aes128-gcm@openssh.com,aes256-cbc,rijndael256-cbc,rijndaelcbc@lysator.liu.se,aes192-cbc,rijndael192-cbc,aes128-cbc,rijndael128-cbc,cast128- cbc,blowfish-cbc

The following is the list and order of all ciphers available with FIPs 140-2 disabled
aes128-cbc,chacha20-poly1305@openssh.com,aes128-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,3des-cbc,blowfish-cbc,aes192-cbc,aes192-ctr,aes256-cbc,aes256-ctr,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se,cast128-cbc

The following is the list and order of ciphers available with the FIPS 140-2 option enabled.
aes128-cbc,aes128-ctr,3des-cbc,aes192-cbc,aes192-ctr,aes256-cbc,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se

The registry parameter bDisableFIPS must be set to 1 to use algorithms which are not on the FIPS list. The default value of this parameter is 0.

The following is the procedure to change the registry key to specify the Ciphers available to the client.
1. Click the Start button at the bottom left corner of your screen
2. Click RUN
3. Type REGEDIT
4. Click OK
5. Select Registry Key:

6. Select the menu item Edit and then click on Modify
7. Enter the new value for the szCiphers and click OK

Watch How to Specify Ciphers / Encryption Algorithms for SSH Server

Your browser doesn't support HTML5 video.

The new value will take effect when the GSW SSHD service is restarted

Related Documents:

• Restart SSH Server Service
• Learn more about the GSW SSH Server for Windows
• SSH Server with FIPS 140-2
• Approved SSH Security Key Exchange Algorithms
• GSW Business Tunnel - SSH Tunnel
• SSH Client for Android

Back to SSH Server FAQ

Document Number: FAQ-SSH-EX018001081519

Download Georgia Softworks SSH Server
For Windows Today!
Products

Universal Terminal Server (UTS) Telnet Server UTS w/ SSH Server for Windows FIPS 140-2 Compliant Windows SSH Rocket Terminal Engine RF Directed Terminal I/O (DTIO) Engine Business Tunnel - SSH GSW ConnectBot Client for Android

Legal

Privacy Policy Terms of Use License

Support

Open a Support Ticket Register Your Software Registration Help Utilities Download Contact Us

Payments

Make Payment

Media

Blog Press Releases Social Media Feeds

About GSW section

Innovation About Us Security Sitemap

Contact Us

Sales: +1.706.265.1018 sales@georgiasoftworks.com

Address

Georgia SoftWorks
17 Hwy 9 South
PO Box 567 Dawsonville Ga 30534
USA

Copyright ©2022 Georgia SoftWorks. All Rights Reserved.
www.georgiasoftworks.com