[PCA 2.x] SSH Weak Message Authentication Code Algorithms
(Doc ID 2870228.1)
Last updated on JUNE 13, 2022
Applies to:Private Cloud Appliance - Version 2.3.1 and later
A customer-performed security scan may flag the following issue:
SSH Weak Message Authentication Code Algorithms
The SSH server supports cryptographically weak Hash-based message authentication codes (HMACs) including MD5 or 96-bit Hash-based algorithms.
Consult the product documentation for instructions to disable any insecure MD5 or 96-bit HMAC algorithms within the SSH configuration.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document