Reset Search
 

 

Article

SecureStack A-Series: SSH vulnerability issue logged by Nessus Scan

« Go Back

Information

 
TitleSecureStack A-Series: SSH vulnerability issue logged by Nessus Scan
Symptoms
A security scan by Nessus results in:
Issue Nessus:
ID Name:
90317 - SSH Weak Algorithms Supported
http://www.tenable.com/plugins/index.php?view=single&id=90317

70658 - SSH Server CBC Mode Ciphers Enabled
Solution: Contact the vendor or consult product documentation to disable
CBC mode cipher encryption, and enable CTR or
Link: http://www.tenable.com/plugins/index.php?view=single&id=70658

Issue:
71049 - SSH Weak MAC Algorithms Enabled
Solution: Contact the vendor or consult product documentation to disable
MD5 and 96-bit MAC algorithms.
Link: http://www.tenable.com/plugins/index.php?view=single&id=71049
Environment
  • SecureStack A2
  • Firmware 03.03.06.0001
  • Nessus by Tenable
Cause
The SSH suite in firmware is out of date.
Resolution
Functions as designed.  The fix would involve inserting a new SSH software suite into the firmware.  Engineering considers this to be a feature request and this platform is feature complete.
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255