Cisco Bug: CSCuo46017 - SSHv1 remains enabled after upgrade and cannot be disabled.
Nov 27, 2020
- Cisco IronPort Email Security Appliance Software
Known Affected Releases
Symptom: A Security Audit or Penetration test on the appliance will reveal that SSHv1 is enabled. When logging into the command line and issuing the "sshconfig" command, the "setup" option is not there to allow the administrator to disable the feature. Conditions: - Appliance is running version 8.0.1-023 or newer. - SSHv1 was enabled prior to the upgrade to 8.0.1-023 or newer.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases