31 Jul
2013
31 Jul
'13
5:48 p.m.
Am 31.07.2013 10:52, schrieb Anumeha Prasad:
Hi,
Following 2 vulnerabilities were detected in VA scan required for PCI compliance:
- SSL Weak Cipher Suites Supported
- SSL Medium Strength Cipher Suites Supported
I'm using CentOS 5.8 with open ssl version "openssl-0.9.8e-22.el5_8.4". Any idea how to get rid of this?
Thanks, Anumeha
You have far more security issues with your system than just providing weak SSL ciphers, because you are not up to date. The current CentOS 5 minor release is 9 with a fair amount of additional bug and security updates.
Update ASAP (`yum update').
Alexander