Hello,
Generally speaking, running the latest versions of Junos will guarantee that you don't have weak ciphers being used by default.
Since those are older pieces of hardware, you may be limited in what you can upgrade to.
To modify what ciphers are in use, you can modify the configuration under:
[system services ssh ciphers]
------------------------------
Craig Dods
------------------------------
Original Message:
Sent: 02-03-2022 08:43
From: DIEUDONNE LEUMALEU FEUDE
Subject: SSH Weak Key Exchange Algorithms Enabled on port 830/tcp and port 22/tcp
Hello all,
please help! i have a couple of juniper devices EX2200, SRX550, EX4200 who have the vulnerability :The remote SSH server is configured to allow weak key exchange algorithms.
How can I fix this ?
Thanks
------------------------------
DIEUDONNE LEUMALEU FEUDE
------------------------------