Subscribe

Web Server Supports Weak SSL Encryption Certificates (#1859)

The customer did a McAfee (I think) vulnerability scan against a Windows 2008 server running OCUM 5.1 and it came up with:

Vulnerability: Web Server Supports Weak SSL Encryption Certificates (#1859)        (Medium risk)

Tracking ID:  7832692

Where found: Internal Only

Scan Information:  tcp:8443

They want to know how if there is a supported way to change the Apache web server to only allow strong (128bit) encryption or better.

Re: Web Server Supports Weak SSL Encryption Certificates (#1859)

Hi Keith,

     I suggest you open a case with NetApp support, IIRC, this is fixed in OCUM 5.2.

Also try this link to know the different vulnerabilities, its applicability to the product and version in which its fixed.

Public facing page with additional coverage of suspected vulnerabilities

Regards

adai