Imperva Cyber Community

Hello everyone,

The "SSH Weak Key Exchange Algorithm Enabled" vulnerability was recently discovered in MX and GW appliances version 13.6.0.51.

The solution that pentesting gave me was: "key exchange algorithm Should not be enabled.

Reference: SSH Weak Key Exchange Algorithms Enabled

Does anyone know, how to solve this issue
#CloudWAF(formerlyIncapsula)

------------------------------
Jagadesh Kumar R
Inormation Security Group, Assistant Manager
The Karur Vysya Bank Limited
Karur
------------------------------

Hi Jagadesh
You need to access via CLI
and found the file in /etc/ssh/
use vi sshd_config
And Add the following line;
and then restart the ssh service
service sshd restart

------------------------------
Alejandro Hernandez
Consultant and Trainer
Soluciones Integrales en Capacitacion SA de CV ("SICAP")
Mexico D.F
------------------------------

Hi Jagadesh,

For SSH-related vulnerability fixes,
it is recommended to use a console connection to prevent SSH from failing to connect.

About SSH Series vulnerability Imperva provides a document of repair steps.
https://support.imperva.com/s/article-items?articleId=520a2ccf
https://support.imperva.com/s/article-items?articleId=9c10e1d0


------------------------------
Henry Zhu
Technical Engineer
CipherTech Co., Ltd
Taipei
------------------------------