Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

PCI Vulnerability - Logjam - SSH

Discussion in 'Security' started by SJR, Sep 2, 2017.

Tags:
  1. SJR

    SJR Member

    Joined:
    Jan 2, 2017
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    USA
    cPanel Access Level:
    Website Owner
    Recent PCI scan is failing due to:

    "The remote host allows SSH connections with one or more Diffie-Hellman moduli less than or equal to 1024 bits."

    Vulnerability:
    "The SSH server is vulnerable to the Logjam attack because : It supports diffie-hellman-group1-sha1 key exchange."

    Solution:
    "Reconfigure the service to use a unique Diffie-Hellman moduli of 2048 bits or greater."

    I need help on how to resolve this issue. I need to keep SSH access.

    Any thoughts?

    Thanks much.
     
  2. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    301
    Likes Received:
    88
    Trophy Points:
    28
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    See if this helps

     
  3. SJR

    SJR Member

    Joined:
    Jan 2, 2017
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    USA
    cPanel Access Level:
    Website Owner
    Thank you rpvw. I am currently using the latest version, apache 2.4.27 but I 'think' your suggestion controls SSL, not the SSH service.
     
  4. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    301
    Likes Received:
    88
    Trophy Points:
    28
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,165
    Likes Received:
    1,371
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page