Forum Discussion

Cirrus

Sep 11, 2019

Vulnerability SSL Medium Strength Cipher Suites Supported

From the PCI audit I get the following: Vulnerability SSL Medium Strength Cipher Suites Supported Currently the following is configured: list sys httpd sys httpd { auth-pam-idle-timeout 2400 ...

Cumulonimbus

Sep 11, 2019

Hi,

There is a solution, get rid of all the low and medium level ciphers from apache conf file.

Try this first, it can fix your problem:

TLSv1.2+HIGH:!aNULL:!eNULL

Keep me in touch.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Vulnerability SSL Medium Strength Cipher Suites Supported

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

How can I get started with iCall

Related Content

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

BYOEDR, Undetectable backdoor, WhoFi, Cyberattack to airline, and Clickjacking vulnerability

Support and Help for DevCentral and Offline Contact

Coordinated Vulnerability Disclosure: A Balanced Approach

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS