My Oracle Support Banner

Exalogic Virtual 2.0.6.3.X, 2.0.6.4.X: Disable SSH Weak Algorithms, Encryption, Ciphers And MACs On Dom0 Compute Nodes (Doc ID 2608742.1)

Last updated on SEPTEMBER 18, 2024

Applies to:

Oracle Exalogic Elastic Cloud Software - Version 2.0.6.3.0 to 2.0.6.3.191015
Oracle Exalogic Elastic Cloud Software - Version 2.0.6.4.0 to 2.0.6.4.190716
Linux x86-64
Oracle Virtual Server x86-64
- 2.0.6.3.0 and higher (running UEK2 kernel)
- 2.0.6.4.0 and higher (running UEK4 kernel)


Purpose

This Note provides information on how to disable weak SSH algorithms, encryption, ciphers and MACs on Dom0 Compute nodes sshd configuration.

Following are the weak SSH algorithms, Ciphers and MACs which are found on Dom0 Compute Nodes sshd configuration.

SSH Weak Algorithms Supported

arcfour
arcfour128
arcfour256

SSH Server CBC Mode Ciphers

3des-cbc
aes128-cbc
aes192-cbc
aes256-cbc
blowfish-cbc
cast128-cbc

SSH Weak MAC Algorithms

hmac-md5
hmac-md5-96
hmac-sha1-96

Scope

Exalogic 2.0.6.3.X and 2.0.6.4.X Virtual rack Dom0 Compute nodes.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Scope
Details
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.