How are Ciphers, MACs and Key exchange algorithms negotiated by OpenSSH?

ssh encryption openssh

You can see more precise details of how the various algorithms are negotiated in RFC 4253, Section 7.1, but basically:

  • The algorithms in ssh_config (or the user's ~/.ssh/config) and in sshd_config are ranked by preference, highest to lowest.
  • The server chooses the first algorithm on the client's list that it also supports. Hence, the choice is biased towards the client's preferences.

The Cipher and MAC algorithms do show up in verbose output, e.g.

debug1: kex: server->client aes128-ctr [email protected] [email protected]
debug1: kex: client->server aes128-ctr [email protected] [email protected]

Last I checked, OpenSSH does not say what exact Kex algorithm it chooses though. Maybe this will change in the future.

Related

Chrome (and Chrome alone) cannot access the Internet
Why do we always need the Schwarz lemma when bounding the trace of a Kähler metric?
How to find the smallest sphere that intersects 3 given lines in 3D?
Understanding conditional independence of two random variables given a third one
What are the integrals defined for $\mathbb{R}^n$?
Non isomorphic groups who product with Z is isomorphic [duplicate]
Number of distinct values of $ \oint_\gamma \frac{dz}{(z-a_1)(z-a_2)...(z-a_n)}$ for closed $ \gamma $
Asymptotic behavior of $\Gamma^{-1}(x)$
Isomorphisms in the localization of a category
Ideals and filters
Grade of a maximal prime ideal in a Noetherian UFD
Grothendieck connections and jets