Detections
Analytics

SSL/TLS Server Cipher Suite Preference Not Detected

info Web App Scanning Plugin ID 112599

Language:

Synopsis

SSL/TLS Server Cipher Suite Preference Not Detected

Description

The remote server is not configured with a SSL/TLS cipher suite preference list, making the cipher suite selection during the negotiation use the ordered list from the client.

See Also

http://www.exploresecurity.com/testing-for-cipher-suite-preference/

https://wiki.mozilla.org/Security/Server_Side_TLS

Plugin Details

Severity: Info

ID: 112599

Type: remote

Family: SSL/TLS

Published: 9/24/2020

Updated: 8/25/2021

Scan Template: api, basic, config_audit, full, pci, quick, scan, ssl_tls