For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

S_Meulmeester's avatar
S_Meulmeester
Icon for Cirrus rankCirrus
Sep 11, 2019

Vulnerability SSL Medium Strength Cipher Suites Supported

From the PCI audit I get the following: Vulnerability SSL Medium Strength Cipher Suites Supported Currently the following is configured: list sys httpd sys httpd {     auth-pam-idle-timeout 2400 ...
BIG-IP
LTM
security
S_Meulmeester's avatar
S_Meulmeester
Icon for Cirrus rankCirrus
Oct 18, 2019

​Hi,

TLSv1.2+HIGH:!aNULL:!eNULL  didn't help, I know configured 

modify /sys httpd ssl-ciphersuite "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA:AES256-SHA:AES128-SHA256:AES256-SHA256"