cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4298
Views
0
Helpful
8
Replies

Vulnerability regarding the SSH on Cisco BE6K server

nithin louis
Level 1
Level 1

Hi Team,

Our client ordered penetration test, and as a feedback they got recommendation on the Cisco UCS BE6K server "The remote SSH server is configured to allow weak encryption algorithms or no algorithm at all".

Please review the below mentioned updates which we got from the penetration test team.


Is there any way by which we can change the algorithms used between SSH server and client ?.

Thanks & Regards
Nithin Louis.

Vulnerability Name Vulnerability Impact SOLUTION Additional Information
SSH Weak Algorithms Supported The remote SSH server is configured to allow weak encryption algorithms or no algorithm at all. Contact the vendor or consult product documentation to remove the weak ciphers.
The following weak server-to-client encryption algorithms are supported :

  arcfour
  arcfour128
  arcfour256

The following weak client-to-server encryption algorithms are supported :

  arcfour
  arcfour128
  arcfour256
1 Accepted Solution

Accepted Solutions

Have a look at below bug

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCur26594/?referring_site=bugquickviewredir

View solution in original post

8 Replies 8
<