Linux upgrades
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-07-2012 07:03 AM - edited 03-10-2019 05:36 AM
Hi,
I have recently completed a vulnerability assessment against IPS modules in an ASA and have had a few vulnerabilities flag up.
The Vulnerabilities are surrounding the Linux OS that the IPS sits on.
Does anyone know if the OpenSSH can be upgraded and how to configure the certificates in Linux.
Any feedback would be greatly appreciated.
- Labels:
-
IPS and IDS

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-13-2012 12:09 PM
You can't perform any lasting changes in the Linux OS on the sensor. If you do change something, it will get over written during the next OS upgrade.
Here's the documentation that discusses certificates on the sensor:
http://www.cisco.com/en/US/partner/docs/security/ips/7.0/configuration/guide/ime/ime_ssh_tls.html
- Bob
