RebexSFTP - can we control ciphers

0 votes
asked Apr 21 by VSCode2017 (120 points)

I use the SFTP libraries to send secured data to a partner company. They told me yesterday that they are removing a few strong ciphers from their secure FTP site. I don't have any idea what ciphers are used in the Rebex libraries. Is this something I can control?

Applies to: Rebex SFTP

1 Answer

0 votes
answered Apr 21 by Lukas Pokorny (85,050 points)

Yes, you can enable/disable SSH ciphers as needed using methods of Sftp object's Settings.SshParameters property.

Please see http://www.rebex.net/sftp.net/features/ssh.aspx#ciphers for details and list of supported ciphers.

commented Apr 27 by VSCode2017 (120 points)
Are there any code examples for using the sshparameters property?
commented Apr 27 by Lukas Pokorny (85,050 points)
There is a bit of sample code at http://www.rebex.net/sftp.net/features/connecting.aspx#connect-options

If you need any additional information, let us know.
commented Apr 28 by VSCode2017 (120 points)
Since I need to explicitly disallow only a few AES ciphers, not the whole category, I tried this which seems to explicitly let me set a specific cipher ID...appeared to work.  Let me know if I did this correctly please:

sftp.Settings.SshParameters.SetEncryptionAlgorithms(new string[]{"aes256-ctr"});
commented Apr 28 by Lukas Pokorny (85,050 points)
Yes, this enables "aes256-ctr" and disable all other ciphers (unless AES was disabled using SshParameters.EncryptionAlgorithms or CTR was disabled using SshParameters.EncryptionModes - in that case, the SSH client would fail due to an empty effective list of enabled ciphers).
...