![]() ![]() SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 !EECDH+aRSA+RC4 EECDH EDH+aRSA !RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS !EDH-RSA-DES-CBC3-SHA !ECDHE-RSA-DES-CBC3-SHA !DES-CBC3-SHA !ECDHE-RSA-RC4-SHA !RC4-MD5 !RC4-SHA"įor Windows, follow this script: Author Posted on Categories Information Security, Linux Leave a comment on Linux: Remediate SSL Weak Cipher Suites How to Install Virtualbox in Ubuntu … with this content: SSLProtocol -all -SSLv2 -SSLv3 -TLSv1 +TLSv1.1 +TLSv1.2 Reconfigure the affected application, if possible to avoid the use of weak ciphers.Įdit the following file: sudo vim /etc/httpd/conf.d/ssl.conf Output Here is the list of weak SSL ciphers supported by the remote server :ĭES-CBC-SHA Kx=RSA Au=RSA Enc=DES-CBC(56) Mac=SHA1 Note: This is considerably easier to exploit if the attacker is on the same physical network. The remote host supports the use of SSL ciphers that offer weak encryption. var : variables, holds directories and files are expected to grow in size Author Posted on Categories Linux Leave a comment on Linux Filesystem Hierarchy Standard (FHS) Linux: Remediate SSL Weak Cipher Suites usr : user applications, non-system apps tmp : temp directory, system uses to store editing-in-progress files sys : system folder, pseudo-files that are generated at boot time srv : service directory, typically contains web service files snap : snap packages or self contained apps sbin : system binaries, similar to /bin with higher restrictions that are reserved for sudo access ![]() root : contains files that require root permissions to access, reserved for root user as its dedicated home folder proc : contains system processes or pseudo-files (e.g. ![]() opt : optional folders for manually installed software from various vendors mnt : mount points for devices that are manually configured by users media : mount points for external and secondary devices (e.g. home : user folders (desktops, downloads, medias) etc : etcetera, stores configurations system-wide bin : binaries to run fundamental Linux functions ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |