SSHD Hardening

For most administrators, SSH is the point of call for the initial connection. It allows the user to connect to the server via a command line to be able to see what is happening. The SSH itself by nature is secure hence the abbreviation Secure Shell. Its a secure connection to the server, we can enhance the connection by define a rule set under the SSHD at the following location:

/etc/sshd/sshd_config 

# Commended the following lines for SSH file transfer

Ciphers aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes128-ctr
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,hmac-ripemd160
KexAlgorithms diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1