|
|
|
|
|
|
by nuxi7
4044 days ago
|
|
|
That parameter is only for SSHv1 and if you have SSHv1 enabled you've already lost. What they are refering to is the Key Exchange method named "diffie-hellman-group1-sha1" which uses a 1024-bit DH group. You can disable this with use of the KexAlgorithms parameter. Starting with OpenSSH 6.6 it is already disabled on the server side, but still allowed with the client. There are severe interoperability problems with embedded devices if disabled. |
|
|