• ITS home
• Help
• Services
• My IT account
• Security
• About

Update to SSH configuration

Posted: Thu 7 Sep 2017, 3:19pm.

The following change will only affect users who use an SSH or SFTP client to connect to a University system.

On Tuesday 12 September, from 09:00, IT Services will be updating the list of permitted secure shell ciphers, algorithms, and key exchange protocols on a number of systems, including unix.sussex.ac.uk.

This update is part of our ongoing efforts to harden our systems by taking a pro-active approach to security.

The primary change which users of unix.sussex.ac.uk and other ssh servers will see is a change in the servers’ fingerprint.

The fingerprint for unix.sussex.ac.uk will be available on this page once the change has been made. Please check that the fingerprint shown is the fingerprint which is offered by the ssh server so that you can be sure that you are connecting to the correct server.

There will be a brief service interruption when we apply the new configuration.  This will interrupt established connections, so you will need to reconnect once the new configuration has been applied (completed by 10:00).

If you see an error connecting to the ssh server, please ensure that you have updated to the latest version of your ssh client (e.g. putty 0.70, WinSCP 5.9.6) and that you are running a supported operating system. IT Services has tested this change extensively and has found no issues with up to date ssh clients.

For further information, please contact the IT Service Desk by going to www.sussex.ac.uk/its and pressing the red Help button.