This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About dru
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About dru
06-17-2017
2Posts
0Likes
0Solutions
Jun 17, 2017Last Visited
User
Activity
User
Profile
Latest posts by dru
| Subject | Views | Posted |
|---|---|---|
| 3224 | 04-10-2013 12:29 PM | |
| 4495 | 04-04-2012 11:35 AM |
User Badges
Community Statistics
| Member Since | 11-17-2011 11:45 AM |
| Date Last Visited | 06-17-2017 07:51 AM |
| Posts | 2 |
04-10-2013
12:29 PM
We run Qualys scans on the internal network, and it's picking up that the PA's are running OpenSSH ver 5.2. I receive the following warning: OpenSSH, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol. This allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol. Affected Software: OpenSSH versions 5.6 and prior. The CVSS base is 7.5/10. It suggests to update to 5.7 or later. Obviously that's not an option from my point of view. This however could be deemed a false positive if J-Pake is not enabled. Can someone confirm if J-pake is running on this installation or if a newer version of OpenSSH is being looked into? Thanks.
... View more
- Tags:
- management
- openssh
Labels:
- Labels:
-
Management
04-04-2012
11:35 AM
Have you any success with ssh-key method? We're attempting to do this, but when issuing commands from the remote box, it does not appear the remote shell is not receiving the command. If logging in using regular ssh, it works. Does PA's ssh daemon prevent remote execution? Or am I missing something that can be configured to accomplish this?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
06-17-2017
07:51 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks