ESXI-06-000011 - The SSH daemon must be configured to use only the SSHv2 protocol.

Details

SSH protocol version 1 suffers from design flaws that result in security vulnerabilities and should not be used.


Solution

Only SSH protocol version 2 connections should be permitted.

Add or correct the following line in '/etc/ssh/sshd_config':

Protocol 2


Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.


References


Source