Univention Bugzilla – Bug 44833
make univention-management-console-server ciphers configurable
Last modified: 2023-06-19 15:28:42 CEST
Relevance: important for PCI-DSS Pentest: Port 6670 weak ciphers: Accepted TLSv1.2 112 bits DES-CBC3-SHA Accepted TLSv1.2 56 bits DES-CBC-SHA Accepted TLSv1.1 112 bits DES-CBC3-SHA Accepted TLSv1.1 56 bits DES-CBC-SHA Accepted TLSv1.0 112 bits DES-CBC3-SHA Accepted TLSv1.0 56 bits DES-CBC-SHA Accepted TLSv1.0 128 bits RC4-SHA Accepted TLSv1.0 128 bits RC4-MD5 Accepted TLSv1.1 128 bits RC4-SHA Accepted TLSv1.1 128 bits RC4-MD5 Accepted TLSv1.2 128 bits RC4-SHA Accepted TLSv1.2 128 bits RC4-MD5 The used ciphers should be configurable.
I fixed this yesterday in Bug #40998. *** This bug has been marked as a duplicate of bug 40998 ***