Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-23812

Add configuration option to enable/disable ciphers used for sshd

    Details

    • Similar Issues:

      Description

      Our IT dept uses automated scanning tools to discover vulnerabilities. Having the CBC ciphers enabled for the ssh connection to jenkins throws warnings in the tools.

      I would like a configuration option to enable/disable particular ciphers, so that I could disable the cbc ciphers.

      Our IT dept is able to do their job better when scans are clean and not throwing flags up at management.

      This could be left as is, but allowing users the option to increase security at low implementation risk is almost always a good thing.

        Attachments

          Issue Links

            Activity

            Hide
            danielbeck Daniel Beck added a comment -

            Jenkins 2.37 threw out the obsolete ciphers.

            Show
            danielbeck Daniel Beck added a comment - Jenkins 2.37 threw out the obsolete ciphers.
            Hide
            oleg_nenashev Oleg Nenashev added a comment -

            The feature request is still there. It has to be done on the SSHD Module side, and Security Global Config or System props would be useful in this case

            Show
            oleg_nenashev Oleg Nenashev added a comment - The feature request is still there. It has to be done on the SSHD Module side, and Security Global Config or System props would be useful in this case

              People

              • Assignee:
                Unassigned
                Reporter:
                s7726 Gavin Swanson
              • Votes:
                2 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: