Re: [CentOS] SSL vulnerabilities

Thank you all. I edited Connector node in server.xml file for my tomcat installation to include below cipher code: ciphers="SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_C

Re: [CentOS] SSL vulnerabilities

Am 31.07.2013 10:52, schrieb Anumeha Prasad: > Hi, > > Following 2 vulnerabilities were detected in VA scan required for PCI > compliance: > > 1. SSL Weak Cipher Suites Supported > 2. SSL Medium Strength Cipher Suites Supported > > I'm using CentOS 5.8 with open ssl version "openssl-0.9.8e-22.el

Re: [CentOS] SSL vulnerabilities

http://pof.eslack.org/2011/06/07/disable-apache2-weak-medium-ciphers-pci-compliance/ 2013/7/31 Anumeha Prasad > Hi, > > Following 2 vulnerabilities were detected in VA scan required for PCI > compliance: > > 1. SSL Weak Cipher Suites Supported > 2. SSL Medium Strength Cipher Suites Supported >

Re: [CentOS] SSL vulnerabilities

On 07/31/2013 08:52 PM, Anumeha Prasad wrote: Hi, Following 2 vulnerabilities were detected in VA scan required for PCI compliance: 1. SSL Weak Cipher Suites Supported 2. SSL Medium Strength Cipher Suites Supported I'm using CentOS 5.8 with open ssl version "openssl-0.9.8e-22.el5_8.4". Any ide