The SSH client must be configured to only use the SSHv2 protocol.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-22456	GEN005501	SV-35212r1_rule	DCPP-1	Medium

Description
SSHv1 is not a DoD-approved protocol and has many well-known vulnerability exploits. Exploits of the SSH client could provide access to the system with the privileges of the user running the client.

STIG	Date
HP-UX 11.31 Security Technical Implementation Guide	2017-05-19

Details

Check Text ( C-36631r2_chk )
Check the SSH client configuration for allowed protocol versions. Note that keywords are case-insensitive and arguments (args) are case-sensitive. keyword=Protocol arg(s)=2 # cat /opt/ssh/etc/ssh_config \| tr '\011' ' ' \| tr -s ' ' \| sed -e 's/^[ \t]*//' \| grep -v '^#' \| grep -i "Protocol" If Protocol 2,1 (the default) or Protocol 1 are defined on a line without a leading comment, this is a finding.

Check Text ( C-36631r2_chk )

Check the SSH client configuration for allowed protocol versions. Note that keywords are case-insensitive and arguments (args) are case-sensitive.

keyword=Protocol
arg(s)=2

# cat /opt/ssh/etc/ssh_config | tr '\011' ' ' | tr -s ' ' | sed -e 's/^[ \t]*//' | grep -v '^#' | grep -i "Protocol"

If Protocol 2,1 (the default) or Protocol 1 are defined on a line without a leading comment, this is a finding.

Fix Text (F-31999r1_fix)
Edit the client configuration file Protocol entry to look like: Protocol 2