Applies to ONTAP 9.x Data ONTAP 7-Mode 8.x ONTAP Select 9.x Issue Versions of OpenSSH below 4.71 are vulnerable to an exploit allowing attackers to extract arbitrary plain text from cipher text. 14-32...Applies to ONTAP 9.x Data ONTAP 7-Mode 8.x ONTAP Select 9.x Issue Versions of OpenSSH below 4.71 are vulnerable to an exploit allowing attackers to extract arbitrary plain text from cipher text. 14-32 bits of text are extractable although the odds of extracting a full 32 bits of data are extremely low. For related AIQUM error, see "SSH is using insecure ciphers" event is detected on Active IQ Unified Manager
Applies to Data ONTAP 7-Mode 8.2.5P5 Any attempt to login to filer via SSH using CBC based ciphers failed with below error: -bash-4.2$ pbrun ssh -oKexAlgorithms=diffie-hellman-group14-sha1 -c 3des-cbc...Applies to Data ONTAP 7-Mode 8.2.5P5 Any attempt to login to filer via SSH using CBC based ciphers failed with below error: -bash-4.2$ pbrun ssh -oKexAlgorithms=diffie-hellman-group14-sha1 -c 3des-cbc root@filer01 Unable to negotiate with 10.10.10.xx port 22: no matching cipher found. Login attempt to same filer using different cipher is successful -bash-4.2$ pbrun ssh -oKexAlgorithms=diffie-hellman-group14-sha1 -c aes128-ctr root@filer-01
