Forum Discussion

Cirrus

Feb 02, 2018

SSL Cipher tweaking

Hi, To be honest i do not completely understand how the cipher string is constructed, but I normally use this one, that used to give me grade A on ssllabs: !LOW:!SSLv2:!SSLv3:!MD5:!RC4+SHA:!EXPO...

Employee

Feb 02, 2018

Hi, Have a look to the OWASP recommendations: https://www.owasp.org/index.php/TLS_Cipher_String_Cheat_Sheet (at the bottom of the page you have the cipher strings, you may need to tweak them a bit). I use to implement this and enforce advanced plus whenever I can (all modern browsers should support it)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL Cipher tweaking

Recent Discussions

unable to question about getting hsl data to be formatted properly in splunk

question about getting hsl data to be formatted properly in splunk

Problem with lets encrypt and redirect after update

Is a Dedicated Interface, VLAN, and Self IP Required for a VIP in an F5 Configuration?

REST API to download License JSON report?

Related Content

Web UI Tweaks

WebUI Tweaks OLD

Help tweaking my iRule

Web UI Tweaks Chrome plugin

Cipher Suites Supported (12.1.5.3)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS