Security Basics mailing list archives

Re: Cisco PIX with SSH enabled on external port for maintenance

From: Alloishus BeauMains <all0i5hu5 () gmail com>
Date: Thu, 10 Nov 2005 15:25:35 -0600

There are no reasons I can think of if you use the latest version of
SSH, and if you make sure that you require an authentication key that
has to be copied to the PC.

And then, unless someone has a weak passphrase, then you should be pretty set.

Anyone else?

On 11/9/05, Cam Fischer <camfischer () gmail com> wrote:

I am looking for some reasons why I should not be allowing SSH on the
external side of my Cisco PIX firewall. It would be great for
management, but what are the risks associated with this?

Thx

Cam

Current thread:

Cisco PIX with SSH enabled on external port for maintenance Cam Fischer (Nov 10)
- Re: Cisco PIX with SSH enabled on external port for maintenance Alloishus BeauMains (Nov 15)
- Re: Cisco PIX with SSH enabled on external port for maintenance Chris Largret (Nov 15)
  - Re: Cisco PIX with SSH enabled on external port for maintenance John Maher (Nov 16)
    - Re: Cisco PIX with SSH enabled on external port for maintenance Alloishus BeauMains (Nov 17)
    - Re: Cisco PIX with SSH enabled on external port for maintenance Cory Stoker (Nov 21)
    - Re: Cisco PIX with SSH enabled on external port for maintenance Alloishus BeauMains (Nov 21)
- Re: Cisco PIX with SSH enabled on external port for maintenance John Maher (Nov 15)
- <Possible follow-ups>
- Re: Cisco PIX with SSH enabled on external port for maintenance Steve.Cummings (Nov 15)
  - ActivX execution with PowerUser Privilege Marco Spennato (Nov 16)
  - Re: Cisco PIX with SSH enabled on external port for maintenance Cory Stoker (Nov 16)