Skip to content

Symantec Endpoint Protection – Sweet32

06/01/2017

To resolve Nessus vulnerabilities below

42873 SSL Medium Strength Cipher Suites Supported

94437 SSL 64-bit Block Size Cipher Suites Supported (SWEET32)

Edit the following files

“C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\apache\conf\ssl\ssl.conf”

“C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\apache\conf\ssl\sslForClients.conf”

From:

SSLCipherSuite HIGH:!MEDIUM:!LOW:!aNULL:!eNULL:3DES:!RC4

To:

SSLCipherSuite  HIGH:!aNULL:!MD5:!3DES:!CAMELLIA:!AES128

Edit

“C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat\conf\server.xml”

Edit SSLCipherSuite to

HIGH:!aNULL:!MD5:!3DES:!CAMELLIA:!AES128

Advertisements

From → Security

One Comment
  1. Dennis permalink

    Awesome, thank you very much.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: