Disable SSH version 1 on IPS

Unanswered Question
Oct 11th, 2009

We want disable SSH version 1 from our ips, we have checked document but we couldn't find any solution please say your inputs thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
smukhanin Mon, 10/12/2009 - 05:09

This is just simple openssh changes needed.

in service mode change /etc/ssh/sshd_config

Where is

#Protocol 2,1

must be

Protocol 2

Make shure that you in super user mode, than save file and reboot ips

smukhanin Mon, 10/12/2009 - 05:43

#configure term

(conf t)#username serviceAdmin priviledge service password XxxXX



login: serviceAdmin

password: ...




bash# vi /etc/ssh/sshd_config

Than delete '#' and ',1' in

#Protocol 2,1

To make changes you need press 'Shift+I'


Protocol 2

type 'esc' and ':wq'

bash# /etc/init.d/S60ssh restart

may be sshd or other ssh

waltermavely Sun, 10/18/2009 - 03:17

i try to do this config but it saying that

"/etc/ssh/sshd_config" File is read only

smukhanin Sun, 10/18/2009 - 08:18

This is because you not in super user mode. Type 'su' first then type your password, then you will see '#'

waltermavely Sun, 10/18/2009 - 11:49

thanks Sergey

first i have edited protocol 2 even after ssh version 1 was working, after that i have deleted version key file then it stopped, thanks for your help

Bob MacLean Tue, 06/11/2013 - 10:03

So this works for incoming SSH but not for outgoing. I couldn't find another file in /etc/ssh that applied to outgoing so my thought was I could do "ssh -2" from the command line in the service acct to be able to do the scp to send a copy of the config to our server that has the backups on it.

1.anyone know what subdir the configs are in?

2. any help on getting the IPS to do ONLY v2 going out? (on a copy current-config scp://xxxxxxxxxx

Bob MacLean Tue, 06/11/2013 - 12:50

Thanks, that allowed the scp from the service acct.

syntax error, though. Correct sp. is /usr/cids/idsRoot/etc

Still would like to get SSH 2 working though..


This Discussion