Forum Discussion

Nimbostratus

Jul 28, 2016

Getting "server is vulnerable to a BEAST attack" message in SSL checker

Hi All, We have upgraded our SSL cert from SHA-1 to SHA-2. We have disabled both SSLv3 & RC4 in ciphers suit. After upgraded one of our VIP with new SSL cert, I have checked in SSL checker to determi...

application delivery

LTM

IainThomson85_1

Cumulonimbus

Aug 02, 2016

You've still got DES Cipher Suites enabled in your string. Thats what the checker is complaining about.

You'll need to negate this in your Client Side SSL profile.

SJoshi_230759

Nimbostratus

Aug 02, 2016

Hi Ian, So I need to modify my ciphers config in SSL profile? DEFAULT:!SSLv3:!RC4:!DES >> should be my new ciphers? Please confirm.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Getting "server is vulnerable to a BEAST attack" message in SSL checker

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Real Attack Stories: The "MOP Sink" Attack

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

BYOEDR, Undetectable backdoor, WhoFi, Cyberattack to airline, and Clickjacking vulnerability

Automate ASM "Ready to Be Enforced" Attack Signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS