For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

SJoshi_230759's avatar
SJoshi_230759
Icon for Nimbostratus rankNimbostratus
Jul 28, 2016

Getting "server is vulnerable to a BEAST attack" message in SSL checker

Hi All, We have upgraded our SSL cert from SHA-1 to SHA-2. We have disabled both SSLv3 & RC4 in ciphers suit. After upgraded one of our VIP with new SSL cert, I have checked in SSL checker to determi...
application delivery
LTM
SJoshi_230759's avatar
SJoshi_230759
Icon for Nimbostratus rankNimbostratus
Jul 28, 2016

Not fully understand ssllabs output. I am attaching openssl output below: openssl s_client -connect :443 CONNECTED(00000003) verify error:num=20:unable to get local issuer certificate

 

verify return:0 No client certificate CA names sent SSL handshake has read 3127 bytes and written 465 bytes

New, TLSv1/SSLv3, Cipher is AES128-SHA Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : AES128-SHA Timeout : 300 (sec) Verify return code: 20 (unable to get local issuer certificate)