Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Linux upgrades

Hi,

I have recently completed a vulnerability assessment against IPS modules in an ASA  and have had a few vulnerabilities flag up.

The Vulnerabilities are surrounding the Linux OS that the IPS sits on.

Does anyone know if the OpenSSH can be upgraded and how to configure the certificates in Linux.

Any feedback would be greatly appreciated.

1 REPLY
Gold

Re: Linux upgrades

You can't perform any lasting changes in the Linux OS on the sensor. If you do change something, it will get over written during the next OS upgrade.

Here's the documentation that discusses certificates on the sensor:

http://www.cisco.com/en/US/partner/docs/security/ips/7.0/configuration/guide/ime/ime_ssh_tls.html

- Bob

280
Views
0
Helpful
1
Replies