Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

PCI Vulnerability - Logjam - SSH

Discussion in 'Security' started by SJR, Sep 2, 2017.

Tags:
  1. SJR

    SJR Member

    Joined:
    Jan 2, 2017
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    USA
    cPanel Access Level:
    Website Owner
    Recent PCI scan is failing due to:

    "The remote host allows SSH connections with one or more Diffie-Hellman moduli less than or equal to 1024 bits."

    Vulnerability:
    "The SSH server is vulnerable to the Logjam attack because : It supports diffie-hellman-group1-sha1 key exchange."

    Solution:
    "Reconfigure the service to use a unique Diffie-Hellman moduli of 2048 bits or greater."

    I need help on how to resolve this issue. I need to keep SSH access.

    Any thoughts?

    Thanks much.
     
  2. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    841
    Likes Received:
    304
    Trophy Points:
    113
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    See if this helps

     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. SJR

    SJR Member

    Joined:
    Jan 2, 2017
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    USA
    cPanel Access Level:
    Website Owner
    Thank you rpvw. I am currently using the latest version, apache 2.4.27 but I 'think' your suggestion controls SSL, not the SSH service.
     
  4. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    841
    Likes Received:
    304
    Trophy Points:
    113
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,827
    Likes Received:
    1,898
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice