Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-7132

Disable weak SSH Ciphers

    XMLWordPrintable

Details

    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      This came up during a security audit, I'm not sure that I understand why this issue keeps getting closed when it poses a possible security threat. Until this issue gets resolved we're going to be blocking ssh access to Stash. I understand that this may require a complicated fix, but this software isn't necessarily cheap either.

      Weak cipher algorithms:
      3des-cbc
      aes128-cbc
      blowfish-cbc

      Weak MAC algorithms:
      hmac-md5
      hmac-md5-96
      hmac-sha1-96

      Attachments

        Issue Links

          is cloned from

          Suggestion - BSERV-5248 Disable weak SSH Ciphers

          • Closed
          mentioned in

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Activity

            People

              fschroder@atlassian.com Federico Schroder (Inactive)
              28636481ddb1 Eric Rutherford
              Votes:
              3 Vote for this issue
              Watchers:
              10 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: