I have a remote site that conducted a security scan into their perimeter environment. As part of this scan, an issue has been exposed that shows that the Cisco 3750 devices allow connections via SSH using weak ciphers (DES). Is there a way to lock the cipher to a stronger one (3DES or AES). If not, is there a Cisco IOS version/feature set that supports setting the maximum cipher to be used?
Currently, the 3750s are running IOS:
Version 12.2(25)SEE, RELEASE SOFTWARE (fc2)