Recently there was another Vulnerability grab My attention which was related to DES and Tripple DES (3DES) , Any men in the middle can exploit this vulnerability by capturing large amount of encrypted data and thus recover plain text sensitive data.
Severity: Medium
CVE Number: CVE-2016-2183
support@linuxforeveryone.com
Remediation : You need to disable any ciphers starting with DES and 3DES supported by Server by any service present on server for example
- Apache
- Nginx etc
Important Point to Remember : 1 : |
Important Point to Remember : 2 : |
Important Point to Remember : 3 : |
Please limit the number of requests client can make in a single TLS session and / or the keep-alive timeout value, If disabling 64 bit block ciphers is not possible.
====================================X============X=================================================Contact support@linuxforeveryone for any Freelancing work on Linux Servers
Subscribe my YouTube Channel
Like My Facebook Page
Browse the Best in class Web Hosting Plans
Comments
Post a Comment