Imperva Cyber Community

communities_1.jpg
 View Only

  • 1.  Vulnerability SSH Weak Key Exchange (MX & GW)

    Posted 11-30-2022 06:53
    Hello everyone,

    The "SSH Weak Key Exchange Algorithm Enabled" vulnerability was recently discovered in MX and GW appliances version 13.6.0.51.

    The solution that pentesting gave me was: "key exchange algorithm Should not be enabled.

    Reference: SSH Weak Key Exchange Algorithms Enabled

    Does anyone know, how to solve this issue
    #CloudWAF(formerlyIncapsula)

    ------------------------------
    Jagadesh Kumar R
    Inormation Security Group, Assistant Manager
    The Karur Vysya Bank Limited
    Karur
    ------------------------------


  • 2.  RE: Vulnerability SSH Weak Key Exchange (MX & GW)

    Posted 11-30-2022 17:59
    Hi Jagadesh
    You need to access via CLI
    and found the file in /etc/ssh/
    use vi sshd_config
    And Add the following line;
    and then restart the ssh service
    service sshd restart

    ------------------------------
    Alejandro Hernandez
    Consultant and Trainer
    Soluciones Integrales en Capacitacion SA de CV ("SICAP")
    Mexico D.F
    ------------------------------

    Original Message


  • 3.  RE: Vulnerability SSH Weak Key Exchange (MX & GW)

    Posted 11-30-2022 20:41
    Hi Jagadesh,

    For SSH-related vulnerability fixes,
    it is recommended to use a console connection to prevent SSH from failing to connect.

    About SSH Series vulnerability Imperva provides a document of repair steps.
    https://support.imperva.com/s/article-items?articleId=520a2ccf
    https://support.imperva.com/s/article-items?articleId=9c10e1d0


    ------------------------------
    Henry Zhu
    Technical Engineer
    CipherTech Co., Ltd
    Taipei
    ------------------------------

    Original Message