Solved: Ironport SSH Keys Vulnerability patch

fpiccioni · ‎09-28-2015

Hi

customer is running WSA 8.8.0-085. In the available upgrades web pages it is shown the file "cisco-sa-20150625-ironport SSH Keys Vulnerability Fix". When trying to apply it , both from web pages and from CLI, as suggested by RN, it shows the patch as already applied:

Checking if 'Cisco-Ironport SSH Keys Vulnerability' patch is required
'Cisco-Ironport SSH Keys Vulnerability' patch is already applied
Upgrade installation finished.

I think reason should be WSA was upgraded after June 25 to a release already including this patch.

Question:

- How can I be sure SSH keys are ok?

- Why patch remain in the available upgrades? Can I delete it?

Thanks in advance

Atazazuddin Shaikh · ‎09-28-2015

Good Morning

Thanks for reaching out, Here is the link that provide details around this:

https://supportforums.cisco.com/blog/12543046/multiple-default-ssh-keys-vulnerabilities-cisco-virtual-wsa-esa-and-sma

and as for "Why patch remain in the available upgrades? Can I delete it?"

This patch will be removed once you upgrade to version 9.0.x and at this time can not be "de-provisioned"

Regards,

Zack

View solution in original post

Atazazuddin Shaikh · ‎09-28-2015