Synopsis
The remote SSH server is configured to enable SHA-1 HMAC algorithms.
Description
The remote SSH server is configured to enable SHA-1 HMAC algorithms.
Although NIST has formally deprecated use of SHA-1 for digital signatures, SHA-1 is still considered secure for HMAC as the security of HMAC does not rely on the underlying hash function being resistant to collisions.
Note that this plugin only checks for the options of the remote SSH server.
Plugin Details
File Name: ssh_sha1_hmac_enabled.nasl
Supported Sensors: Nessus