pci

Title: CPE Based Vulnerabilities for Linux 4.4 Impact: One or more vulnerabilities have been found that affect this service. Please see the relevant CVEs for more details. Resolution: Apply the latest vendor patches to your operating system: Linux 4.4 CVE / Score...

We are failing our PCI testing due to OpenSSH 7.4p1, which is the latest in yum. PCI compliance requires a minimum of 7.6. Please help.

Hi. It seems one of my sites keeps failing PCI due to "weak arcfour ciphers" being available. This is identified using this command: nmap -Pn --script ssh2-enum-algos www.domain.com -p 22 I have tried the pci compliance resolver many times. Any idea how i can fix this problem? I am running the...

I am running Centos 7.x. SSH -V shows: OpenSSH_6.6.1p1, OpenSSL 1.0.1e-fips 11 Feb 2013 My PCI scans are failing because I am required to upgrade OpenSSH to 6.7+. Unfortunately there is no upgrade package available. Has anyone been able to update/upgrade OpenSSH? if so, how? Thanks