- 1【LeetCode每日一题】706. 设计哈希映射
- 2NLP中数据增强的综述,快速的生成大量的训练数据_nlp的训练模型如何累加数据
- 3Hadoop3.1.3完全分布式安装配置_hadoop3.1.3安装详细步骤
- 4C语言实现学生管理系统(完整代码在文末)_学生信息管理系统c语言
- 5【宜搭】低代码开发师高级认证实操题1难点指导_宜搭高级认证实操题1
- 6PAN221X系列 产品说明书 V1.9
- 7CSS设置移动端页面底部安全距离_css 安全距离
- 8Maven保姆式教程---从入门到安装(超级详细)_maven安装教程
- 9***php解析JSON二维数组字符串(json_decode函数第二个参数True和False的区别)
- 10读书笔记《Spring Boot+Vue全栈开发实战》(下)_springboot为什么易扩展
Cisco switch vulnerability_bar mitzvah cisco
赞
踩
Cisco switch
-------------------
SSH Protocol Version 1 Session Key Retrieval
https://community.cisco.com/t5/security-knowledge-base/guide-to-better-ssh-security/ta-p/3133344
(config)#ip ssh version 2
--------------------
SSH Weak Key Exchange Algorithms Enabled
https://community.cisco.com/t5/switching/how-to-disable-ssh-weak-key-exchange-algorithm/td-p/4537520
(config)#ip ssh server algorithm encryption aes256-ctr aes128-ctr
(config)#ip ssh server algorithm mac hmac-sha1
(config)#no ip ssh server algorithm mac hmac-sha1-96
---------------
SSH Weak MAC Algorithms Enabled
https://community.cisco.com/t5/other-security-subjects/ssh-weak-mac-algorithms-enabled/td-p/2972727
(config)#ip ssh server algorithm encryption aes256-ctr aes128-ctr
(config)#ip ssh server algorithm mac hmac-sha1
(config)#no ip ssh server algorithm mac hmac-sha1-96
------------
SSH Server CBC Mode Ciphers Enabled
https://community.cisco.com/t5/switching/to-disable-ssh-server-cbc-mode-ciphers/td-p/2451582
(config)#ip ssh server algorithm encryption aes256-ctr aes128-ctr
-------------
TLS Version 1.0 Protocol Detection
SSL RC4 Cipher Suites Supported (Bar Mitzvah)
SSL Certificate Cannot Be Trusted
SSL Self-Signed Certificate
SSL Weak Cipher Suites Supported
SSL Certificate Expiry
SSL Certificate Chain Contains RSA Keys Less Than 2048 bits
SSL Medium Strength Cipher Suites Supported (SWEET32)
SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)
SSL Certificate Signed Using Weak Hashing Algorithm
(config)#no ip http
(config)#no ip http secure-server
