Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Ensuring that all 64-bit block ciphers are disabled? |
|
| Author |
|
alexjohnb
Joined: 26 Aug 2011
Posts: 22
Location: Middlesex University
|
 Posted: Tue 31 Jan '17 15:36 Post subject: Ensuring that all 64-bit block ciphers are disabled? |
 |
|
Hello,
I currently have the following directive in http-ssl.conf:
SSLCipherSuite ALL:!MD5:!RC4:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:!MEDIUM:!LOW
How would I go about ensuring that all 64-bit ciphers are disabled?
The question arises due to the Sweet32 vulnerability.
Many thanks. |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg
|
| Posted: Fri 10 Feb '17 18:51 Post subject: |
|
|
Checkout which of your ciphers have 64 bit.
| Code: | | openssl ciphers -v 'ALL:COMPLEMENTOFALL' |
|
|
| Back to top |
|
|
|
|
|
|
