Nessus and " openssl ciphers -v 'ALL:eNULL'" detect the following weak SSL ciphers on my test server:
NULL-SHA SSLv3 Kx=RSA Au=RSA Enc=None Mac=SHA1 NULL-MD5 SSLv3 Kx=RSA Au=RSA Enc=None Mac=MD5 What configure options do I specify to rebuild openssl to compile out these weak SSL ciphers? Specifying no-md5 should disable required ciphers such as RC4-MD5, which I do not want to do. Is there an openssl config file or runtime tool to disable all ciphers with Enc=None? Your feedback would be greatly appreciated. Thanks, Robert
