Supported key exchange and MAC algorithms for SFTP

0 votes
asked Jan 30 by DaveLeonard (120 points)

Hi,

could you tell me if your sftp component supports the following.

KexAlgorithms: curve25519-sha256@libssh.org,
diffie-hellman-group18-sha512,
diffie-hellman-group16-sha512,
diffie-hellman-group14-sha256,
diffie-hellman-group-exchange-sha256

Ciphers:
chacha20-poly1305@openssh.com,
aes256-gcm@openssh.com,
aes128-gcm@openssh.com,
aes256-ctr,
aes192-ctr

MACs:
hmac-sha2-512-etm@openssh.com,
hmac-sha2-256-etm@openssh.com,
umac-128-etm@openssh.com,
hmac-sha2-512,hmac-sha2-256

Thanks

Dave Leonard

Applies to: Rebex SFTP

1 Answer

0 votes
answered Jan 30 by Lukas Pokorny (99,010 points)

The following applies to the current version of Rebex SFTP. See the complete list of supported ciphers for details.

KexAlgorithms:
curve25519-sha256@libssh.org - not supported yet (planned)
diffie-hellman-group18-sha512 - not supported yet (our DH routines currently limited to 4096 bits)
diffie-hellman-group16-sha512 - supported
diffie-hellman-group14-sha256 - supported
diffie-hellman-group-exchange-sha256 - supported

Ciphers:
chacha20-poly1305@openssh.com - not supported yet (planned)
aes256-gcm@openssh.com - supported
aes128-gcm@openssh.com - supported
aes256-ctr - supported
aes192-ctr - supported

MACs:
hmac-sha2-512-etm@openssh.com - supported
hmac-sha2-256-etm@openssh.com - supported
umac-128-etm@openssh.com - not supported
hmac-sha2-512 - supported
hmac-sha2-256 - supported

...