Search found 7 matches
- 2016/02/05 17:55:00
- Forum: CentOS 6 - Security Support
- Topic: Supposed security vulnerabilities with openssh
- Replies: 1
- Views: 3912
Supposed security vulnerabilities with openssh
Hi, We've been asked to look at several vulnerabilities that are coming up in a PCI Compliance scan and needed some advice as to a couple of warnings related to openssh, the supposed solution being to upgrade openssh. Now I usually take these reports with a grain of salt as I realise that it's prone...
- 2016/01/25 17:44:30
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Re: Advice needed with SSL protocols and cipher suites
Thanks for your help. I got it resolved after upgrading Plesk which was overriding the settings I had initially set in place. It was indeed a case of tracking down the vhosts and ensuring each had the appropriate settings
- 2015/12/04 13:58:26
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Re: Advice needed with SSL protocols and cipher suites
Forgive my ignorance, as mentioned this isn't my forte. Is this what you're referring to: /usr/sbin/httpd -S VirtualHost configuration: XX.XX.XXX.XXX:7080 is a NameVirtualHost default server mydomain.com (/var/www/vhosts/mydomain.com/conf/14485391080.35778000_httpd_ip_default.include:133) port 7080 ...
- 2015/12/04 13:39:15
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Re: Advice needed with SSL protocols and cipher suites
We're hosting just a single domain but I think you may be referring to mail services, plesk etc, right?
- 2015/12/04 11:22:56
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Re: Advice needed with SSL protocols and cipher suites
Hi, I've run the yum update and I can see that now we're running Centos 6.7. I've run the scan at SSLlabs but there's been no change. I'm not sure I understand why TLS1.0 is not being disabled. We have the following set in /etc/httpd/conf.d/ssl.conf and /etc/httpd/conf/httpd.conf: SSLProtocol -ALL +...
- 2015/12/02 21:25:55
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Re: Advice needed with SSL protocols and cipher suites
Thanks for the reply. Will running the yum update resolve the issue I'm having with the SSL protocols and ciphers? Will that overwrite settings/ directives we currently have in place?
- 2015/12/02 20:16:08
- Forum: CentOS 6 - Security Support
- Topic: Advice needed with SSL protocols and cipher suites
- Replies: 11
- Views: 18335
Advice needed with SSL protocols and cipher suites
Hi, I'm really hoping someone can help. We're running Centos 6.5(final)/Apache 2.2.15 and an ssl version check returns v1.01.1e fips. The basic issue is that we need to harden our security settings however we're failing to get an A rating at SSL labs, only achieving a B rating, primarily it seems du...