Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The SSH client must be configured to only use FIPS 140-2 approved ciphers.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-22461 | GEN005510 | SV-35188r1_rule | DCNR-1 | Medium |
| Description |
|---|
| DoD information systems are required to use FIPS 140-2 approved ciphers. SSHv2 ciphers meeting this requirement are 3DES and AES. |
| STIG | Date |
|---|---|
| HP-UX 11.31 Security Technical Implementation Guide | 2015-12-02 |
Details
| Check Text ( None ) |
|---|
| None |
| Fix Text (F-32007r1_fix) |
|---|
| Edit the configuration file and remove any ciphers that do not meet the following: 3des-ctr or aes-NNN-ctr (NNN=128, 192 or 256). If necessary, add the Ciphers entry with one or more of the above keyword values. |