Vulnerabilities identified for Gitblit 1.9.2

28 views
Skip to first unread message

Prasad Vishnu

unread,
Sep 8, 2022, 3:23:19 AM9/8/22
to gitblit
Is there a way to disable  below weak algorithm or Ciphers for Gitblit 1.9.2. 

SSH Weak Key algorithm- diffie-hellman-group-exchange-sha1 & diffie-hellman-group1-sha1  

 

SSH Server CBC Mode Ciphers Enabled - Removed aes128-cbc,3des-cbc,blowfish-cbc,aes192-cbc,aes256-cbc

 

SSH Weak MAC Algorithms - hmac-md5,hmac-sha1,hmac-sha1-96,hmac-md5-96


Gitblit 1.9.2.JPG

Florian Zschocke

unread,
Nov 1, 2022, 12:10:20 PM11/1/22
to gitblit
I don't know of any configuration setting which would allow to disable these.
Reply all
Reply to author
Forward
0 new messages