07-29-2013 11:23 PM - edited 03-16-2019 06:36 PM
Hi we are using c2851(CME) with CUE version 8.6.4 and cp7965g ipphones(firmware 9.3.1). we are getting some vulnerability messages which i attached the report. so we have decided to disable http in Cue and ssh in IP phone. can you suggest how to disable the services. thanks
Solved! Go to Solution.
07-31-2013 12:48 AM
For disabling the SSH to phone, you need to do the following.
telephony-service
service phone sshAccess 1
CUE supports both HTTP and HTTPS.
You need to do the following to enable HTTPS.
1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"
2. reload
4. In CUE config mode - "web session security keyLabel GUI"
3. enable TLS 1.0 in IE and Firefox
07-29-2013 11:27 PM
In short, do not bother. Thjere is no vulnerability, and no issue. Espacially CUE is designed to work with HTTP all the time. Eg users accessing their setting or mailboxes over the web.
07-30-2013 12:05 AM
Hi Paolo,
Thanks for your reply, Instead of http can i use the https service and how do you evaluate the ssh message?
07-30-2013 12:12 AM
No, CUE supports HTTP only.
As mentioned above, you can ignore SSH in the phone.
07-31-2013 12:48 AM
For disabling the SSH to phone, you need to do the following.
telephony-service
service phone sshAccess 1
CUE supports both HTTP and HTTPS.
You need to do the following to enable HTTPS.
1.. In CUE config mode - "crypto key generate rsa label GUI modulus 1024"
2. reload
4. In CUE config mode - "web session security keyLabel GUI"
3. enable TLS 1.0 in IE and Firefox
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide