HP ProCurve Disable SSH1

By Jason S.
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

Jason S. Global Moderator

Posted
  • Global Moderator
Posted

In our most recent security scan, one of our HP ProCurve switches was shown to have SSH1 enabled. We have a A5830AF-48G.

 

From what I've read, SSH1 is enabled by default. I have not found a way to disable it while still keeping SSH enabled. I've checked the GUI and command references. There's a command to enable SSH1, which is already enabled by default.

 

Enable the SSH server to support SSH1 clients.

 

'ssh server compatible-ssh1x enable'
 

Optional. By default, the SSH server supports SSH1 clients.

 

So does anyone know how to disable SSH1?

Link to comment
https://www.neowin.net/forum/topic/1259090-hp-procurve-disable-ssh1/
Share on other sites
Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

don't have an hp but look through the different commands

 

start with

 

ssh server ?

yeah i did all that. there's nothing that shows 'disable' anything. even the manual doesnt show it, which is why i started the topic.

 

ambroos - you really think i didnt search online for this before posting? :huh:

 

also, that command doesnt work.

Grand Master

sc302 Veteran

Posted
  • Veteran
Posted

Ok the command is

no ssh server compatible-ssh1x enable

 

 

the description of compatible-ssh1x enable command is:

Use the ssh server compatible-ssh1x command to enable the SSH server to support SSH1 clients.

Use the undo ssh server compatible-ssh1x command to disable the SSH server from supporting SSH1 clients.

By default, the SSH server supports SSH1 clients.

This configuration takes effect only for users logging in after the configuration.

Related commands: display ssh server.

 

if you don't have ssh1x clients, then you would be fine...however if you do have ssh1 clients it will break and the ssh1 clients will not be able do connect.  this command enables backwards compatibility. 

 

This doc may help you:

 

http://www.h3c.com/portal/Technical_Support___Documents/Technical_Documents/WLAN/Access_Point/H3C_WA2200_Series_WLAN_Access_Points/Command/Command/H3C_WA_WLAN_Access_CR-6W100/09/201009/691923_1285_0.htm#_Toc271618296

 

Budman:

the enable mode is accessed by typing in

system

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

Ok the command is

no ssh server compatible-ssh1x enable

 

 

the description of compatible-ssh1x enable command is:

Use the ssh server compatible-ssh1x command to enable the SSH server to support SSH1 clients.

Use the undo ssh server compatible-ssh1x command to disable the SSH server from supporting SSH1 clients.

By default, the SSH server supports SSH1 clients.

This configuration takes effect only for users logging in after the configuration.

Related commands: display ssh server.

 

if you don't have ssh1x clients, then you would be fine...however if you do have ssh1 clients it will break and the ssh1 clients will not be able do connect.  this command enables backwards compatibility. 

 

This doc may help you:

 

http://www.h3c.com/portal/Technical_Support___Documents/Technical_Documents/WLAN/Access_Point/H3C_WA2200_Series_WLAN_Access_Points/Command/Command/H3C_WA_WLAN_Access_CR-6W100/09/201009/691923_1285_0.htm#_Toc271618296

 

Budman:

the enable mode is accessed by typing in

system

well im baffled. the "undo" command worked. i copy/pasted that same command yesterday, and it didnt work. i just tried again, and it worked. im stumped.

 

thank you everyone for your help. much appreciated!

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Hey Google, these are the Gemini features I want in 2026

      By ad47uk · Posted

      I used to use Google assistant, not on the phone i have now, but about 7 years ago, then I decided it did not really do anything for me. Because i had Echo units over the house I added Alexa to the phone to control stuff and that is how it is now. Not the new Alexa+, as that is not really available in the U.K yet apart from on new units and to be honest, not interested in it. I went though the stage years ago of using voice to do text and call people, quicker to do it using my hands. I had a muck about with Siri on my Mac when I first got it, but not having a microphone permanently plugged in makes it a pain. I know it can be used by text. Siri like Apple AI is disabled on my Mac and will stay disabled.
    • It's about to become harder to turn off your Samsung TV, thanks to Instagram

      By ad47uk · Posted

      I have a TV, but it is not used for normal linear TV, only streaming and it is not a Samsung and the best bit is, I don;'t and never have had a Instagram account. The only thing I have to do with Meta is Faceache and I only keep that just for the messaging part.
    • Valve finally confirms Steam Machine prices, starts at $1049 for 512GB option

      By Co-ords · Posted

      What about HL3?
    • Valve finally confirms Steam Machine prices, starts at $1049 for 512GB option

      By ShadeOfBlue · Posted

      But building your own.. what? You can't build anything like the Steam Machine yourself. Even trying to get close costs a good deal more. Even just the CPU cooler in their price comparison is as big as the entire Steam Machine. If you want a regular gaming PC, then by all means, build that. If you want a a small console-like PC for the living room that is good for gaming, I'm not sure what else is a better deal. In the GN review, they only mentioned a small form factor Dell, which is like twice the size and hundreds of dollars more expensive.
    • Valve finally confirms Steam Machine prices, starts at $1049 for 512GB option

      By ShadeOfBlue · Posted

      Those are some popular multiplayer games. But hardly "all". Just those that don't work on Linux currently due to specific anti-cheat implementations. I think it's also fair to point out the literally thousands of games that don't work on the PS5. And it's not locked at 1080p. That's the default, which you can change.

  • Recent Achievements

    • One Month Later
      nates earned a badge
      One Month Later
    • Week One Done
      Almohandis earned a badge
      Week One Done
    • Rookie
      dorf went up a rank
      Rookie
    • First Post
      mike_rumble earned a badge
      First Post
    • Dedicated
      tuben earned a badge
      Dedicated

  • Popular Contributors

    1. 1
      +primortal
      497
    2. 2
      +Edouard
      205
    3. 3
      PsYcHoKiLLa
      94
    4. 4
      Michael Scrip
      89
    5. 5
      neufuse
      71
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!