Description:
The affected host support the use of MD5 or 96-bit MAC algorithms, both of which are considered weak encryption which is associated to cryptography flaws.
Risk Level:
Low
Implication:
An attacker could leverage this issue to decipher the encrypted data to obtain sensitive information.
Recommendation:
The affected host should be configured to disable the to disable MD5 and 96-bit MAC algorithms.
Manual Verification:
ssh -m hmac-md5 ipaddr
No comments:
Post a Comment