Hi all,
I'm now publishing updated base-admserv and base-apache RPMs for 5207R,
5208R and 5209R.
These introduce stronger 'SSLCipherSuite' for HTTPS connections, which
remove the weaker Diffie-Hellman ciphers.
The new 'SSLCipherSuite' is this:
SSLCipherSuite
Hi Lew,
> I ended up having to enable AES_128 SHA256 in TLS 1.1 in order
> to make 2010 version work again and SHA 128 in TLS 1.0 to make 2007
> work
>
> I know all of this doesn't translate into the world of BX but
> bottom line is that while hardening web servers y
Yeah, it's a balance act
Thank you Michael,
They are this
-rw-r--r-- 1 root root 662 Mar 14 12:38 /etc/xinetd.d/proftpd
-rw-r--r-- 1 root root 654 Mar 14 13:13 /etc/xinetd.d/proftpds
I did this service xinetd restart all seems fine now
--
/*Richard C. Barker Sr.
CEO & President
1-813-873-8942
ProBass Networks Inc.
Hi RC,
> I have stopped and started all VPS's only one is still not allowing any ftp
> no errors in server just my client ftp log still shows this.
>
> 2018-03-14 13:42:25, 4: Control connection could not be established.
> 2018-03-14 13:42:25, 4: (0x274d) No connection could be made
I have stopped and started all VPS's only one is still not allowing any ftp
no errors in server just my client ftp log still shows this.
2018-03-14 13:42:25, 4: Control connection could not be established.
2018-03-14 13:42:25, 4: (0x274d) No connection could be made because
the target
I have stopped and started all VPS's only is still not allowing any ftp
no errors in server just my client ftp log still shows this.
2018-03-14 13:42:25, 4: Control connection could not be established.
2018-03-14 13:42:25, 4: (0x274d) No connection could be made because
the target
Hi Michael,
Been a while since I've put my 2ยข in and this mostly for the benefit of Ken,
Chris, and the other hosting guys.
In having to answer to the overlords at FINRA, NCUA, PCI, etc. I routinely
harden Exchange servers using tools from our friends at Qualys and SSL Labs for
private
My Aventurine failed over to the backup all VPS's running but 3 of them
ftp and ftps
are not allowing connections get this error in logs. My IP is whitelisted
2018-03-14 08:59:17, 00012: Attempting to connect to my.domain.net
2018-03-14 08:59:17, 00012: Session window 00012 established for
Hi Dirk,
> This are the CipherSuits which are actually active at the 5209R Servers:
>
> SSLCipherSuite
> HIGH:!LOW:!MEDIUM:!DH:!ADH:!EXP:!SSLv2:!SSLv3:!aNULL:!eNULL:!NULL:!EXPORT:!ADH:!IDEA:!ECDSA:!3DES:!DES:!MD5:!PSK:!RC4:!SHA:
>
> -> unfortunately no PFS
> Are this the SSLCipherSuite you set
Hello Michael,
maybe to get some clearance on this issue.
This are the CipherSuits which are actually active at the 5209R Servers:
SSLCipherSuite
HIGH:!LOW:!MEDIUM:!DH:!ADH:!EXP:!SSLv2:!SSLv3:!aNULL:!eNULL:!NULL:!EXPORT:!ADH:!IDEA:!ECDSA:!3DES:!DES:!MD5:!PSK:!RC4:!SHA:
-> unfortunately no PFS
Hello Michael,
thank you for your email.
No an additional download for an intermediate certificate is not the reason for
a B-rating.
I have another server with all intermediates on stock and this server also have
a B-rating.
Also enabling HSTS is not a guarantee for an A-rating.
I have a
11 matches
Mail list logo
