06 Aug 2021
10:23 AM
- last edited on
15 Jun 2023
01:10 PM
by
Karolina_Linda
Hi,
While scanning Dynatrace ActiveGate for VAPT vulnerabilities "SSH Weak Algorithms Supported" this point is highlighted by concern team.
Vulnerability Description: Nessus has detected that the remote SSH server is configured to use the Arcfour stream cipher or no cipher at all. RFC 4253 advises against using Arcfour due to an issue with weak keys.
So we're seeking inputs from Dynatrace team this kind of algorithm using in product or not, if we're using this algorithm in product, So please provide solution to resolve this vulnerability issue as soon as possible.
Regards
Sagar Dalvi
Solved! Go to Solution.
27 Aug 2021 09:20 PM
@sagar_dalvi I would recommend raising this concern to Dynatrace support so the vulnerability can be reviewed and addressed.
27 Aug 2021 09:50 PM
Dynatrace does not include any SSH service in its platform. If your scanner really reports SSH Weak Algorithms Supported(not SSL), then it's up to you to upgrade the underlying operating system where your ActiveGate is running.
27 Aug 2021 09:54 PM
Thank you for the clarity @Julius_Loman