526
Views
0
Helpful
0
Replies
Disabling Weak SSH ciphers on IPS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-16-2016 03:09 AM - edited 03-20-2019 09:09 PM
Hi Cisco Team,
We have Cisco IPS configured for SSH access, during the security audit following issues were reported:
1. The SSH server is configured to support Cipher Block Chaining (CBC) encryption.
2. The SSH server is configured to allow either MD5 or 96-bit MAC algorithms, both of which are considered weak.
I could not find any documentation to close the audit finding on IPS, we are running IPS version 7.1(11)E4. Request your advice.
Thanks
Labels:
- Labels:
-
Cisco Bugs
0 Replies 0
