Disable SSH1 Support

Syedfurquan · ‎02-04-2015

Hello Expert,

As per security audit we need to fix to issues as below. Appreciate any support on this:

1. Disable SSH1 support. Do not enable SSH Version 1 Fallback since systems with upgraded versions of SSH and with Fallback Version 1 enabled are still vulnerable.

As per other post it suggests to " Use : Protocol 2 in /opt/ssh/etc/sshd_config". Hence after editing /opt/ssh/etc/sshd_config it looks like as:

#Port 22
Protocol 2
#AddressFamily any
#ListenAddress 0.0.0.0
#ListenAddress ::

is it ok now?

2. Disable or remove SNMPv1/2c authentication. Use SNMP version 3

I found out "The HP-UX standard SNMP agent does not support SNMP version 3". is it correct?

Regards,

Regards,
Syed

RJHall · ‎02-05-2015

'Protocol 2' is the default, so that should be fine.

This thread indicates SSNMPv3 is available via Internet Express. I have no idea whether HP monitoring software will work with SNMPv3.

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Disable SSH1 Support

Disable SSH1 Support

Re: Disable SSH1 Support