Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-23812

Add configuration option to enable/disable ciphers used for sshd

      Our IT dept uses automated scanning tools to discover vulnerabilities. Having the CBC ciphers enabled for the ssh connection to jenkins throws warnings in the tools.

      I would like a configuration option to enable/disable particular ciphers, so that I could disable the cbc ciphers.

      Our IT dept is able to do their job better when scans are clean and not throwing flags up at management.

      This could be left as is, but allowing users the option to increase security at low implementation risk is almost always a good thing.

          [JENKINS-23812] Add configuration option to enable/disable ciphers used for sshd

          Daniel Beck added a comment -

          Jenkins 2.37 threw out the obsolete ciphers.

          Daniel Beck added a comment - Jenkins 2.37 threw out the obsolete ciphers.

          Oleg Nenashev added a comment -

          The feature request is still there. It has to be done on the SSHD Module side, and Security Global Config or System props would be useful in this case

          Oleg Nenashev added a comment - The feature request is still there. It has to be done on the SSHD Module side, and Security Global Config or System props would be useful in this case

            Unassigned Unassigned
            s7726 Gavin Swanson
            Votes:
            2 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: