Details
Sets the SSH version to 2
Rationale:
SSH is an application running on top of a reliable transport layer, such as TCP/IP, that provides strong authentication and encryption capabilities. The ASA allows SSH connections to the ASA for management purposes. The ASA supports the SSH remote shell functionality provided in SSH Versions 1 and 2. However, SSH version is known to be a vulnerable protocol that can be exploited by attackers.
Solution
Run the following to enable SSH version 2
hostname(config)# ssh version 2
Default Value:
By default, the security appliance allows both SSH Version 1 and Version 2
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Cisco.