Logjam Attack - Disabling 1024 bit Diffie Hellman primes

To mitigate your risk against the Logjam Attack and the theoretical risks of 1024 bit primes you should configure our products to remove support for 1024 bit primes

// J2SSH Maverick before SshConnector.connect
Ssh2Context ssh2Context = (Ssh2Context) con.getContext(SshConnector.SSH2); 
ssh2Context.supportedKeyExchanges().remove(Ssh2Context.KEX_DIFFIE_HELLMAN_GROUP1_SHA1);
ssh2Context.setDHGroupExchangeKeySize(2048);

// Maverick SSHD within your configure method
sshContext.supportedKeyExchanges().remove(SshContext.KEX_DIFFIE_HELLMAN_GROUP1_SHA1);
 
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.