Comware

Good morning, I have some news about the 5120 JE068A devices since when performing a scan it is showing the vulnerability (SSH Server CBC Mode Ciphers Enabled), but the device does not allow configuring the SSH encryption algorithms, I see that it is due to the software version, currently I have the latest version for these devices, Comware 5.20 Release R2222P11. Is there a solution other than replacing it with a more recent model that offers support for advanced security configurations and periodic updates?

Hello Coltoper,

HPE 5120 (JE068A) is Comware5 device, There is no way to configure SSH algorithoms in Comware5.  

What you can do is, Configfure SSH server ACL to block unsolicited or unwanted SSH login . 

Eventually H/W upgrade will be the go-forward plan. 

Good morning, I have some news about the 5120 JE068A devices since when performing a scan it is showing the vulnerability (SSH Server CBC Mode Ciphers Enabled), but the device does not allow configuring the SSH encryption algorithms, I see that it is due to the software version, currently I have the latest version for these devices, Comware 5.20 Release R2222P11. Is there a solution other than replacing it with a more recent model that offers support for advanced security configurations and periodic updates?