OSX to enable connect SSH using SHA1.

Since there are older devices with with SSH using SHA1, OSX need to enable the support of SHA1, or else it will have error messages below:

Unable to negotiate with xxx.xxx.xxx.xxx port 22: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1

so go config OSX ssh configuration:

sudo nano /etc/ssh/ssh_config

remove #hash from the below lines:

Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc

MACs hmac-md5,hmac-sha1,umac-64@openssh.com

add the below to end of file:

HostkeyAlgorithms ssh-dss,ssh-rsa

KexAlgorithms +diffie-hellman-group1-sha1

example ssh_config file

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.