SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)
Configure the following registry and restart the server
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\Diffie-Hellman]
"ServerMinKeyBitLength"=dword:00000800
Transport Layer Security (TLS) Protocol CRIME Vulnerability - Splunkd port 8089
Change allowSslCompression = true to false and restart splunkforwarder service
C:\Program Files\SplunkUniversalForwarder\etc\system\default>more server.conf | findstr allowSslCompression
allowSslCompression = false
SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)
Add the following line in sshd_config and restart sshd service
# Ciphers and keying
No comments:
Post a Comment