• SSH Protocol Version 1 Session Key Vulnerability

mario-palma · ‎11-25-2015

Hi we have a ASA-5585 and the IPS show us a vulnerability SSH Protocol Version 1 Session Key.

How We do to mitigate that?

Karsten Iwen · ‎11-25-2015

Does your IPS show this when you connect to your ASA? Or for other access?

In general: Make sure that all SSH-servers only accept ssh version 2.

For the configuration of SSH on ASA and IOS you can look at the following document:

For other devices, follow the respective documentation.

Configurando L2TPv3 (Layer 2 Tunnel Protocol Version 3)