-
Improvement
-
Resolution: Unresolved
-
Major
Our IT dept uses automated scanning tools to discover vulnerabilities. Having the CBC ciphers enabled for the ssh connection to jenkins throws warnings in the tools.
I would like a configuration option to enable/disable particular ciphers, so that I could disable the cbc ciphers.
Our IT dept is able to do their job better when scans are clean and not throwing flags up at management.
This could be left as is, but allowing users the option to increase security at low implementation risk is almost always a good thing.
- is related to
-
-
- Resolved
-
[JENKINS-23812] Add configuration option to enable/disable ciphers used for sshd
Gavin Swanson
created issue -
| Workflow | Original: JNJira [ 156602 ] | New: JNJira + In-Review [ 179344 ] |
| Resolution | New: Cannot Reproduce [ 5 ] | |
| Status | Original: Open [ 1 ] | New: Resolved [ 5 ] |
| Labels | Original: ciphers ssh sshd vulnerability | New: ciphers ssh sshd |
The feature request is still there. It has to be done on the SSHD Module side, and Security Global Config or System props would be useful in this case
| Resolution | Original: Cannot Reproduce [ 5 ] | |
| Status | Original: Resolved [ 5 ] | New: Reopened [ 4 ] |
| Assignee | New: Oleg Nenashev [ oleg_nenashev ] |
| Link |
New:
This issue is related to |
| Assignee | Original: Oleg Nenashev [ oleg_nenashev ] |
Jenkins 2.37 threw out the obsolete ciphers.