Active IQ Unified Manager Discussions

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Active IQ Unified Manager Discussions

Ask a Question

Web Server Supports Weak SSL Encryption Certificates (#1859)

ckeith
NetApp
‎2013-10-28 10:07 AM
3,516 Views

The customer did a McAfee (I think) vulnerability scan against a Windows 2008 server running OCUM 5.1 and it came up with:

Vulnerability: Web Server Supports Weak SSL Encryption Certificates (#1859)        (Medium risk)

Tracking ID:  7832692

Where found: Internal Only

Scan Information:  tcp:8443

They want to know how if there is a supported way to change the Apache web server to only allow strong (128bit) encryption or better.

0 Kudos
View By:
1 REPLY 1

adaikkap
NetApp Alumni
‎2013-10-28 10:46 PM
3,516 Views

Hi Keith,

     I suggest you open a case with NetApp support, IIRC, this is fixed in OCUM 5.2.

Also try this link to know the different vulnerabilities, its applicability to the product and version in which its fixed.

Public facing page with additional coverage of suspected vulnerabilities

Regards

adai

0 Kudos
All Community Forums
Public