Weak SSL Ciphers Supported

Low Nessus Network Monitor Plugin ID 1105

Synopsis

The remote SSL Server is configured to use weak encryption.

Description

The SSL server allows clients to connect using weak (export grade) ciphers. As these ciphers are more easily cracked or hijacked, there is the potential of a remote session being taken over or observed. There is a risk of potential loss of confidential data.

Solution

Disable weak ciphers on the TLS/SSL server.

Plugin Details

Severity: Low

ID: 1105

File Name: 1105.prm

Family: Web Servers

Published: 2004/08/20

Modified: 2016/01/15

Nessus ID: 10863

Risk Information

Risk Factor: Low