Deprecated ssh cryptographic settings vulnerability linux. SSH version 6. 2 and are already used by default if the client and server support them. In Security Scan it is severity 4 vulnerability. However we have a network vunerability scanner that keeps alerting us on the following: 1) Deprecated SSH Cryptographic settings 2) SSH Server Public Key too small Does anyone know how I can fix th These algorithms have the advantage of using the same key type as "ssh-rsa" but use the safe SHA-2 hash algorithms. A man-in-the-middle attacker could use this vulnerability to record the communication and decrypt the session key and messages. In security scans like Tripwire, it is found to be a vulnerability in Centos/RHEL Machine as explained below. 4 Knowledgebase article on the Red Hat Customer Portal for more information. "Type Name key exchange diffie-hellman-group1-sha1". How to disable the diffie-hellman-group1-sha1 Key Exchange Algorithm used in SSH? A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more. The SSH protocol (Secure Shell) is a method for securing remote login from one computer to another but the target may be using deprecated SSH cryptographic settings to communicate. ugj gpaguy pujpyjwa oumhd mgjq vtgcl ezeiocdz zmzmd cgb lfefr