Nagios Support Forum

Posted: **Fri Sep 11, 2020 6:29 am**

Hello,

we have a vulnerability:

Vulnerability ID: q038739

The SSH protocol (Secure Shell) is a method for secure remote login from one computer to another.

The target is using deprecated SSH cryptographic settings to communicate.

Consequences:
A man-in-the-middle attacker may be able to exploit this vulnerability to record the communication to decrypt the session key and even the messages.

...............
Is there a posibility to:
a) deactivate ssh from the nagios server
b) allow only few ips access to ssh (without firewall...)
c) make it safe?

Thank you

Posted: **Fri Sep 11, 2020 4:11 pm**

You can deactive sshd on a cent/rhel 7/deb/ubuntu machine with:

Code: Select all

systemctl disable sshd
systemctl stop sshd

You can also increase the security by specifying strong ciphers and macs:

https://www.golinuxhub.com/2018/03/best ... y-ciphers/

Limiting access to specific IPs is also possible:

https://unix.stackexchange.com/question ... ip-address

Posted: **Mon Sep 14, 2020 2:19 am**

ok thank you

problem solved

Posted: **Mon Sep 14, 2020 6:56 am**

Nuggel1234 wrote:ok thank you problem solved

Great!

Closing thread

Nagios Support Forum

Nagios is using deprecated SSH cryptographic settings

Nagios is using deprecated SSH cryptographic settings

Re: Nagios is using deprecated SSH cryptographic settings

Re: Nagios is using deprecated SSH cryptographic settings

Re: Nagios is using deprecated SSH cryptographic settings