Am 31.07.2013 10:52, schrieb Anumeha Prasad: > Hi, > > Following 2 vulnerabilities were detected in VA scan required for PCI > compliance: > > 1. SSL Weak Cipher Suites Supported > 2. SSL Medium Strength Cipher Suites Supported > > I'm using CentOS 5.8 with open ssl version "openssl-0.9.8e-22.el5_8.4". Any > idea how to get rid of this? > > Thanks, > Anumeha You have far more security issues with your system than just providing weak SSL ciphers, because you are not up to date. The current CentOS 5 minor release is 9 with a fair amount of additional bug and security updates. Update ASAP (`yum update'). Alexander _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: SSL vulnerabilities
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: SSL vulnerabilities
- From: Alexander Dalloz <ad+lists@xxxxxxxxx>
- Date: Wed, 31 Jul 2013 17:48:53 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CABLQrFa0izQrDzeYUruyYt9cqmWOs375TS5kmuY3Lf0Z_qg=JQ@mail.gmail.com>
- User-agent: Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20130620 Thunderbird/17.0.7
- Follow-Ups:
- Re: SSL vulnerabilities
- From: Anumeha Prasad
- Re: SSL vulnerabilities
- References:
- SSL vulnerabilities
- From: Anumeha Prasad
- SSL vulnerabilities
- Prev by Date: Re: run script on cron job only run on first Saturdat every month???
- Next by Date: Re: run script on cron job only run on first Saturdat every month???
- Previous by thread: Re: SSL vulnerabilities
- Next by thread: Re: SSL vulnerabilities
- Index(es):
 |