Can't find what you need?


• Ask the Community
• Create a Case
Reset Search
 

 

Article

Extreme Control and Extreme Management Center flagged for weak SSH algorithms

« Go Back

Information

 
TitleExtreme Control and Extreme Management Center flagged for weak SSH algorithms
Symptoms
Nessus has detected that the remote SSH server is configured to use the Arcfour stream cipher or no cipher at all. RFC 4253 advises against using Arcfour due to an issue with weak keys.

The following weak server-to-client encryption algorithms are supported : 
  • arcfour
  • arcfour128
  • arcfour256
The following weak client-to-server encryption algorithms are supported :
  • arcfour
  • arcfour128
  • arcfour256

The following client-to-server Cipher Block Chaining (CBC) algorithms
are supported :

The following server-to-client Cipher Block Chaining (CBC) algorithms
are supported :

3des-cbc
aes128-cbc
aes192-cbc
aes256-cbc
blowfish-cbc
cast128-cbc
rijndael-cbc@lysator.liu.se


The following client-to-server Message Authentication Code (MAC) algorithms
are supported :
 
Environment
Extreme Control Version 8
Extreme Management Center Version 8
Cause
Weak ciphers are enabled in SSH application
Resolution
Upgrade to 8.1.1 or higher
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255