• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Way to disable SSH1 protocol support?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Publishing] >> Server Publishing >> Way to disable SSH1 protocol support? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Way to disable SSH1 protocol support? - 14.Dec.2011 7:06:51 AM   
jfkaiser

 

Posts: 16
Joined: 10.Jun.2010
Status: offline 		Hi Folks,

Been working with ISA for awhile now but still get stumped quite a bit.
We had previously implemented the disabling of weak ciphers on ISA servers using a MS kb article to solve some initial security audit issues.

Now a new security scan has revealed this vulnerabiltiy:
---------------------Begin-------------------------------------
Vulnerability: SSH Protocol Version 1 Supported
Possible Solution: "Disable SSH1 support. See your vendor's Web site for information on how to disable SSH protocol Version 1 support. Note: Do not enable SSH Version 1 Fallback since systems with upgraded versions of SSH and with Fallback Version 1 enabled are still vulnerable."
-----------------------End------------------------------------

Thanks for any help in advance...

Thx,
Jon
Post #: 1
RE: Way to disable SSH1 protocol support? - 14.Dec.2011 4:14:51 PM   
hadideveloper

 

Posts: 156
Joined: 20.Jun.2011
Status: offline 		Hi,
which version of isa you use? do you upgrade it and install the update patches?

(in reply to jfkaiser)
Post #: 2
RE: Way to disable SSH1 protocol support? - 15.Dec.2011 6:40:11 AM   
jfkaiser

 

Posts: 16
Joined: 10.Jun.2010
Status: offline 		Thanks for the response. We are using ISA version 2006 with sp1 and are current on the hotfixes etc.

Thx,
Jon

(in reply to hadideveloper)
Post #: 3
RE: Way to disable SSH1 protocol support? - 15.Dec.2011 7:51:00 AM   
SteveMoffat

 

Posts: 1130
Joined: 29.Jun.2001
From: Hamilton, Bermuda
Status: offline 		ISA does not have an ssh vulnerability.

_____________________________

Thanks
Steve

ISA 2006 Book! - http://tinyurl.com/2gpoo8
TMG Bible - http://tinyurl.com/ykv85hr
www.isaserver.bm

The built in ISA help is likely the most comprehensive help built into an application anywhere. USE it!!! Search it!!! RTFM

(in reply to jfkaiser)
Post #: 4
RE: Way to disable SSH1 protocol support? - 15.Dec.2011 7:53:06 AM   
jfkaiser

 

Posts: 16
Joined: 10.Jun.2010
Status: offline 		Thanks, I am wondering if the security scan is actually picking up the INTERNAL server.......i.e. maybe I have to talk to the admins of the server that we are publishing SSH connection to and have THEM eliminate i.e. disable sshv1 on their INTERNAL server?

Thx,
Jon

(in reply to SteveMoffat)
Post #: 5
RE: Way to disable SSH1 protocol support? - 15.Dec.2011 5:36:30 PM   
hadideveloper

 

Posts: 156
Joined: 20.Jun.2011
Status: offline 		Hi,
it is a easy and the best way

(in reply to jfkaiser)
Post #: 6
RE: Way to disable SSH1 protocol support? - 21.Sep.2013 3:50:43 AM   
smallcat

 

Posts: 3
Joined: 21.Sep.2013
Status: offline 		A very unique perspective for your article, I agree with your point of view.I also hope that you are at work is to be able to relax, this is what I recommend to your game, you can click on
-------------------
http://www.fitrsgold.com/RS3.Gold
http://www.aionhome.com/gold/

(in reply to hadideveloper)
Post #: 7

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Publishing] >> Server Publishing >> Way to disable SSH1 protocol support? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts