Score:0

Server

How to get Cipher details from .ppk file

404

4/20/23, 3:52 PM

Is it possible to get the Cipher name from .ppk file? For e.g. name like TLS-CHACHA20-POLY1305-SHA256 or ECDHE-ECDSA-AES256-GCM-SHA384

Edit: Based on the responses in answers and comments, it seems I posted an invalid query here. Apologies, I am a newbie so was not aware about the concepts.

0 + 0

ssl

ssh

cipher

John Hanley

4/20/23, 11:38 PM

You are confusing a large binary number that is stored in the PPK and the software which implements algorithms that use the number. The PPK does not contain algorithms. Those are implemented in software. The number can be used with algorithms that do not even exist today.

Score:1

Server

Steffen Ullrich

4/20/23, 3:57 PM

A PPK file is a key file. There is no cipher like the one you've specified inside it - specifically since you specified TLS ciphers which are different from SSH ciphers. So there is no such cipher to get from the PPK file.

0 + 0

404

4/20/23, 3:58 PM

Thanks Steffen. So which file would contain cipher details? To add context, we are to check the below "To ensure that connections to *.concursolutions.com and * api.concursolutions.com are not disrupted, clients and partners who connect to *.concursolutions.com and * api.concursolutions.com through an application that uses an unsupported cipher must update the application to a supported cipher ". We are connecting using SFTP

Steffen Ullrich

4/20/23, 4:35 PM

@404: Ciphers are negotiated, i.e. there is no fixed cipher. Assuming that you are using Putty (hence PPK files) see [here](https://documentation.help/PuTTY/config-ssh-encryption.html) on how the ciphers are configured. Note though that the kind of ciphers you mention in the question are TLS ciphers (i.e. for HTTPS in browsers), not SSH/SFTP ciphers.

AlexD

4/20/23, 6:08 PM

@SteffenUllrich I suspect that these cyphers names (TLS-CHACHA20-POLY1305-SHA256 and ECDHE-ECDSA-AES256-GCM-SHA384) correspond to [email protected] and [email protected].

Steffen Ullrich

4/20/23, 6:18 PM

@AlexD: SSH distinguishes between Ciphers (symmetric encryption), Key Exchange Algorithms and Key Algorithms. TLS packs everything together into a cipher string (TLS 1.3 moved key algorithms out of the cipher string). So for me it is not really clear what the OP is asking. My current guess is that somebody gave the OP TLS related instructions with the order to make sure that everything is configured securely and now the OP is trying to apply this to SSH/SFTP w/o having any idea that these are actually different things.

Score:1

Server

AlexD

4/20/23, 4:00 PM

According to the following PPK format description you can find SSH algorithm encoded as a string with key algorithm-name and the key encryption algorithm as a string encryption-type.

0 + 0

404

4/20/23, 4:05 PM

Thanks AlexD, yes but it only shows ssh-rsa and not the Cipher name

AlexD

4/20/23, 4:11 PM

I suspect that you are talking about connection cyphers. They are negotiated when a connection is established between a ssh client and a ssh server. They are independent of the key encryption.

404

4/20/23, 4:15 PM

Sorry I am a newbie here. So when we connect to SFTP via SSH certificate, the cipher is not involved? We have one SFTP server where we connect via Public Key/Private key handshake and Essentially we are asked to check this - "To ensure that connections to *.concursolutions.com and * api.concursolutions.com are not disrupted, clients and partners who connect to *.concursolutions.com and * api.concursolutions.com through an application that uses an unsupported cipher must update the application to a supported cipher"

AlexD

4/20/23, 4:20 PM

When you connect to an SFTP server SSH keys are used for authentication and cyphers are used for encryption. You just need to make sure that you are using an up to date client to connect to your SFTP server and that this client supports at least some cyphers supported by the server. You probably want to open another question with the details of your client software and SFTP server software.

404

4/20/23, 4:25 PM

Thanks, can you update this as an answer so that i can mark it as an answer.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to get Cipher details from .ppk file

TH: วิธีรับรายละเอียด Cipher จากไฟล์ .ppk

RO: Cum să obțineți detalii Cipher din fișierul .ppk

RU: Как получить информацию о шифре из файла .ppk

VI: Cách lấy chi tiết Mật mã từ tệp .ppk

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.