Kibana 5601 port protocol & cipher can't detected

Septianingrum.17 · December 19, 2023, 3:29am

I just did a vulnerability scan and got the issue "SSH in Elastic server CBC Mode Ciphers Enabled" this vulnerability was detected on the Kibana server.

I have changed the server.ssl.cipherSuites and server.ssl.supportedProtocols configuration in the kibana.yml but the vulnerability is still detected in the next scan

configuration changes I made:

server.ssl.supportedProtocols: ["TLSv1.2", "TLSv1.3"]
server.ssl.cipherSuites: [ECDHE-RSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-GCM-SHA384 DHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-SHA384 DHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA256 TLS_AES_256_GCM_SHA384 TLS_CHACHA20_POLY1305_SHA256 TLS_AES_128_GCM_SHA256 HIGH !aNULL !eNULL !EXPORT !DES !RC4 !MD5 !PSK !SRP !CAMELLIA]

is there another way to solve this issue?

Thank you,
Regards,
Septia

leandrojmp · December 19, 2023, 3:39am

This has no relation to Kibana, from what you described this is a vulnerability in your SSH server, not on Kibana, you need to fix it on your sshd server changing the ssd_config file.

This is out of the scope of this forum, but it is not hard to find how to fix it, check out this link as an example.

Topic		Replies	Views
Kibana 5601 port protocol & cipher vulnerability Kibana	4	1958	November 23, 2018
Kibana ciphers not bringing up the port 5601 Kibana	3	1127	July 30, 2020
Kibana Ports reported as vulnerability for TLS v 1.0 and 1.1 Kibana	2	1117	March 31, 2021
How do I enable TLS1.2 only and disable weak ssl ciphers in Kibana 7.0? Kibana elastic-stack-security	2	3911	March 29, 2021
How to disable kibana 7.17.3 TLS version 1.1 Kibana elastic-stack-security	2	491	June 9, 2022

Kibana 5601 port protocol & cipher can't detected

Related topics