SSH Remote Identification

dreamstime_xs_4343974 SSH Remote Identifier Information

dreamstime_xs_4343974 SSH Remote Identifier InformationDear JDisc friends,

when JDisc Discovery connects via secure shell (SSH) to a device then the device’s SSH agent returns its remote identification string – even if the access credentials do not match. The remote identification string usually contains the vendor or the SSH service on the device and its version. In the past, JDisc Discovery was ignoring this information. Now we capture this information and store the identifier within our database. That enables users to get an overview over their SSH agents used on the devices and to check for SSH vulnerabilities within your network.

A new report in Software > Security > SSH Remote Identifier lists all identifiers together with the number of devices.

SshRemoteIdentifier SshRemoteIdentifier

Figure: SSH Remote Identifier Report

The report explains, that we are still using openSSH 5.3 on 4 devices. If you check the OpenSSH security page, then you can see that there exist multiple vulnerabilities for this version.

Hope you like this new feature (coming in build 4023).

See ya,
Thomas

author avatar
Thomas Trenz
I own and manage JDisc and its network inventory and discovery products. Before I started JDisc, I worked quite a long time for Hewlett-Packard developing software for network assessments and inventory projects. Feel free to contact me on Linked-In or Xing.

About The Author

Thomas Trenz
I own and manage JDisc and its network inventory and discovery products. Before I started JDisc, I worked quite a long time for Hewlett-Packard developing software for network assessments and inventory projects. Feel free to contact me on Linked-In or Xing.

Leave A Comment


Der Zeitraum für die reCAPTCHA-Überprüfung ist abgelaufen. Bitte laden Sie die Seite neu.

SSH Remote Identification

dreamstime_xs_4343974 SSH Remote Identifier Information

dreamstime_xs_4343974 SSH Remote Identifier InformationDear JDisc friends,

when JDisc Discovery connects via secure shell (SSH) to a device then the device’s SSH agent returns its remote identification string – even if the access credentials do not match. The remote identification string usually contains the vendor or the SSH service on the device and its version. In the past, JDisc Discovery was ignoring this information. Now we capture this information and store the identifier within our database. That enables users to get an overview over their SSH agents used on the devices and to check for SSH vulnerabilities within your network.

A new report in Software > Security > SSH Remote Identifier lists all identifiers together with the number of devices.

SshRemoteIdentifier SshRemoteIdentifier

Figure: SSH Remote Identifier Report

The report explains, that we are still using openSSH 5.3 on 4 devices. If you check the OpenSSH security page, then you can see that there exist multiple vulnerabilities for this version.

Hope you like this new feature (coming in build 4023).

See ya,
Thomas

author avatar
Thomas Trenz
I own and manage JDisc and its network inventory and discovery products. Before I started JDisc, I worked quite a long time for Hewlett-Packard developing software for network assessments and inventory projects. Feel free to contact me on Linked-In or Xing.

About The Author

Thomas Trenz
I own and manage JDisc and its network inventory and discovery products. Before I started JDisc, I worked quite a long time for Hewlett-Packard developing software for network assessments and inventory projects. Feel free to contact me on Linked-In or Xing.
Comments (2)
New SSH Vulnerability – CVE-2023-48795 - JDisc Network Discovery / Dezember 19, 2023

[…] without credentials). This feature already exists within JDisc Discovery since 2017. Check out the blog entry describing the feature. SH identifiers usually include the SSH server and version. With that […]

Antworten
SSH Vulnerability – CVE-2023-48795 - JDisc Network Discovery / Dezember 19, 2023

[…] without credentials). This feature already exists within JDisc Discovery since 2017. Check out the blog entry describing the feature. SH identifiers usually include the SSH server and version. With that […]

Antworten

Leave A Comment


Der Zeitraum für die reCAPTCHA-Überprüfung ist abgelaufen. Bitte laden Sie die Seite neu.