SSH Server CBC Mode Ciphers Enabled - Cisco Community

5834

Views

0

Helpful

1

Replies

Hi,

We have couple of Cisco switches 2960 and HP switches 2910-24g that enabled SSH sever to remote access, Nessus keeps reporting a low

vulnerabilities on those switches because of CBC cipher and it recomandded to use CTR or GCM cipher mode? any Idea how we solve this?

Thanks in advance!

Mike

1 Reply 1

Based on Allow only ssh version 2 with aes256-cbc hmac-sha1 to IOS router thread it seems not to be possible.

Do not allow connection from untrusted/unknown clients to your switch.

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking products for a $25 gift card