nerdexam
CompTIA

XK0-004 · Question #40

In order to comply with new security policies, an administrator needs to prevent the SSH server from using insecure algorithms. Which of the following files should be edited to accomplish this?

The correct answer is A. /etc/ssh/sshd_config. ssh_config: configuration file for the ssh client on the host machine you are running. For example, if you want to ssh to another remote host machine, you use a SSH client. Every settings for this SSH client will be using ssh_config, such as port number, protocol version and encr

Security

Question

In order to comply with new security policies, an administrator needs to prevent the SSH server from using insecure algorithms. Which of the following files should be edited to accomplish this?

Options

  • A/etc/ssh/sshd_config
  • B/etc/ssh/ssh_config
  • C~/.ssh/ssh_config
  • D/etc/ssh/known_hosts

How the community answered

(54 responses)
  • A
    94% (51)
  • B
    4% (2)
  • D
    2% (1)

Explanation

ssh_config: configuration file for the ssh client on the host machine you are running. For example, if you want to ssh to another remote host machine, you use a SSH client. Every settings for this SSH client will be using ssh_config, such as port number, protocol version and encryption/MAC sshd_config: configuration file for the sshd daemon (the program that listens to any incoming connection request to the ssh port) on the host machine. That is to say, if someone wants to connect to your host machine via SSH, their SSH client settings must match your sshd_config settings in order to communicate with you, such as port number, version and so on.

Topics

#sshd_config#SSH hardening#cipher algorithms#SSH server

Community Discussion

No community discussion yet for this question.

Full XK0-004 Practice