Thank you for supporting the Cloud Customer Connect Community in 2024. It's a gift to work with you!

Look back
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Oracle Linux: SSH Security Configuration Rollback Problem

edited Feb 24, 2024 5:14AM in Linux

Applies to:

Oracle Cloud Infrastructure - Version N/A and later

Linux OS - Version Oracle Linux 7.0 to Oracle Linux 9.3 [Release OL7 to OL9U3]

Information in this document applies to any platform.

 

Symptoms

When attempting to disable weak cipher and insecure HMAC algorithms in SSH services following the instructions provided in this documentation: https://community.oracle.com/customerconnect/discussion/668444/how-to-disable-weak-ciphers-such-as-cipher-block-chaining-cbc-ciphers-on-oracle-linux, the changes made to the configuration files (/etc/ssh/sshd_config and /etc/sysconfig/sshd) are automatically reverting to their original settings after a certain period.

 

Changes

Change the configuration files (/etc/ssh/sshd_config and /etc/sysconfig/sshd) to disable the HMAC MD5 and the CBC ciphers.

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!