This FAQ has been written for NEAL (North East Africa and Levant) region. If you are looking for information for another region, please select the correct country from the top-left dropdown in the page and 'Navigate to Browse FAQs' in the Support menu.
Issue: Detection of CBC (Cipher Block Chaining) ciphers being enabled in SSH, which can be flagged by vulnerability scanners
Environment:
E3SOPT001 Firmware 3.7.DA807.APC.19 and lower
Cause:
Vulnerability scanners detect CBC ciphers as a potential security vulnerability in SSH configurations, which is the cause of this issue.
Solution:
The SSH ciphers will be updated on future firmware release. Please note that an exact ETA for the update is not available at this time. This FAQ will be updated accordingly.
Note: SSH uses the highest preference cipher that both the server and client support, which means it will prioritize the most secure cipher available.
If you have further questions or need additional information, please reach out to your local Customer Care Center. Check the link below and set the correct country.
How to Contact APC - APC USA
Environment:
E3SOPT001 Firmware 3.7.DA807.APC.19 and lower
Cause:
Vulnerability scanners detect CBC ciphers as a potential security vulnerability in SSH configurations, which is the cause of this issue.
Solution:
The SSH ciphers will be updated on future firmware release. Please note that an exact ETA for the update is not available at this time. This FAQ will be updated accordingly.
Note: SSH uses the highest preference cipher that both the server and client support, which means it will prioritize the most secure cipher available.
If you have further questions or need additional information, please reach out to your local Customer Care Center. Check the link below and set the correct country.
How to Contact APC - APC USA