cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
504
Views
0
Helpful
1
Replies

Linux upgrades

leach_stuart
Level 1
Level 1

Hi,

I have recently completed a vulnerability assessment against IPS modules in an ASA  and have had a few vulnerabilities flag up.

The Vulnerabilities are surrounding the Linux OS that the IPS sits on.

Does anyone know if the OpenSSH can be upgraded and how to configure the certificates in Linux.

Any feedback would be greatly appreciated.

1 Reply 1

rhermes
Level 7
Level 7

You can't perform any lasting changes in the Linux OS on the sensor. If you do change something, it will get over written during the next OS upgrade.

Here's the documentation that discusses certificates on the sensor:

http://www.cisco.com/en/US/partner/docs/security/ips/7.0/configuration/guide/ime/ime_ssh_tls.html

- Bob

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: