Is there a specific list of what ciphers, etc. are specifically allowed/disallowed when the box is checked to enable FIPS mode?
Also, when making changes to the various algorithms from the SSH/SFTP settings page, does this override the FIPS mode settings, or vice versa?
FIPS Mode details
-
ForumAdmin
- Site Admin
- Posts: 987
- Joined: Mon Mar 24, 2003 4:37 am
Re: FIPS Mode details
There isn't a list as it changes quite often, unannounced.
With DH/KEX and MACs its all except for a few outdated group1/sha1 algs.
With ciphers, its mainly AES only.
Any custom changes to the DH/Cipher/Mac settings will override FIPS settings.
With DH/KEX and MACs its all except for a few outdated group1/sha1 algs.
With ciphers, its mainly AES only.
Any custom changes to the DH/Cipher/Mac settings will override FIPS settings.