| Linode Forum https://forum.linode.com/ |
|
| Security https://forum.linode.com/viewtopic.php?f=19&t=10676 |
Page 1 of 1 |
| Author: | sblantipodi [ Fri Dec 06, 2013 8:06 pm ] |
| Post subject: | Security |
On this site: https://www.ssllabs.com/ssltest/index.html you can test your security weakness about TLS/SSL. I get a grade B because in this section Quote: Cipher Suites (sorted by strength; the server has no preference) TLS_RSA_WITH_DES_CBC_SHA (0x9) WEAK 56 TLS_DHE_RSA_WITH_DES_CBC_SHA (0x15) DH 1024 bits (p: 128, g: 1, Ys: 128) FS WEAK 56 As you can see I get weak ciher. How can I disable this cipher? |
|
| Author: | sblantipodi [ Fri Dec 06, 2013 8:19 pm ] |
| Post subject: | Re: Security |
solved with this in ssl.conf. Quote: SSLProtocol -ALL +SSLv3 +TLSv1
SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:!MEDIUM:!LOW:!SSLv2:!EXPORT |
|
| Author: | Cromulent [ Sat Dec 07, 2013 1:22 pm ] |
| Post subject: | Re: Security |
sblantipodi wrote: solved with this in ssl.conf. Quote: SSLProtocol -ALL +SSLv3 +TLSv1 SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:!MEDIUM:!LOW:!SSLv2:!EXPORT I'd ditch SSLv3 entirely and just use TLS 1.0, 1.1 and 1.2. |
|
| Page 1 of 1 | All times are UTC-04:00 |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|