Active IQ Unified Manager Discussions

Web Server Supports Weak SSL Encryption Certificates (#1859)

ckeith

The customer did a McAfee (I think) vulnerability scan against a Windows 2008 server running OCUM 5.1 and it came up with:

Vulnerability: Web Server Supports Weak SSL Encryption Certificates (#1859)        (Medium risk)

Tracking ID:  7832692

Where found: Internal Only

Scan Information:  tcp:8443

They want to know how if there is a supported way to change the Apache web server to only allow strong (128bit) encryption or better.

1 REPLY 1

Re: Web Server Supports Weak SSL Encryption Certificates (#1859)

adaikkap

Hi Keith,

     I suggest you open a case with NetApp support, IIRC, this is fixed in OCUM 5.2.

Also try this link to know the different vulnerabilities, its applicability to the product and version in which its fixed.

Public facing page with additional coverage of suspected vulnerabilities

Regards

adai

Earn Rewards for Your Review!
GPI Review Banner
All Community Forums
Public