How to disable encryption below 128 bit in Websphere ?
Hi,
Hi I have setup Websphere Portal and Apache server on Solaris.
The problem is that clients are allowed to negotiate lower encryption levels and by default the Websphere Apache HTTP server accepts 56-bit keys (your Firefox client requested 256-bit AES below).
Received a vulnerability - SSH INSECURE HMAC ALGORITHMS ENABLED.
The solution was to Disable any 96-bit HMAC Algorithms. Disable any MD5-based HMAC Algorithms.
Can someone please tell me how to disable in AIX 5.3?
Thanks,
Sudo (1 Reply)
Hi all,
I'm looking for secure file encryption tools that use MAC address as encryption key. FYI, I'm using Red Hat Enterprise Linux OS.
For example: when A wants to send file to B
A will encrypt the file with B's computer MAC/IP address as an encryption key
This file can only be decrypted... (2 Replies)
Hi all Expertise,
I have following issue to solve,
SSL / TLS Renegotiation DoS (low) 222.225.12.13
Ease of Exploitation Moderate
Port 443/tcp
Family Miscellaneous
Following is the problem description:------------------
Description The remote service encrypts traffic using TLS / SSL and... (2 Replies)
Hello,
I recently had a Retina scan of my system and there are some findings I do not understand.
SSL Week Cipher Strength Supported - Retina has detected that the targeted SSL Service supports a cryptographically weak cipher strength... Disable ciphers that support less than 128-bit... (4 Replies)
My dilemma,
I need to send, deemed confidential, information via e-mail (SMTP). This information is sitting as a file on AIX. Typically I can send this data as a e-mail attachment via what we term a "mail filter" using telnet. I now would like to somehow encrypt the data and send it to a e-mail... (1 Reply)
Hi there,,
I am trying to access to one of the sites on the net but am not able to coz it gives an error saying
" The page must be viewed with a high-security Web browser"Upgrade your Web browser to the 128-bit version. "
I use IE.v6.0
kindly tell me how can i access to... (3 Replies)
Session::Generate::ModUsertrack(3) User Contributed Perl Documentation Session::Generate::ModUsertrack(3)NAME
Apache::Session::Generate::ModUsertrack - mod_usertrack for session ID generation
SYNOPSIS
use Apache::Session::Flex;
tie %session, 'Apache::Session::Flex', $id, {
Store => 'MySQL',
Lock => 'Null',
Generate => 'ModUsertrack',
Serialize => 'Storable',
ModUsertrackCookieName => 'usertrack', # optional
};
DESCRIPTION
Apache::Session::Generate::ModUsertrack enables you to use cookie tracked by mod_usertrack as session id for Apache::Session framework.
This module fits well with long-term sessions, so better using RDBMS like MySQL for its storage.
CONFIGURATION
This module accepts one extra configuration option.
ModUsertrackCookieName
Specifies cookie name used in mod_usertrack. "Apache" for default, so change this if you change it via "CookieName" directive in
mod_usertrack.
LIMITATION WITHOUT MOD_PERL
This module first tries to fetch named cookie, but will in vain ONLY WHEN the HTTP request is the first one from specific client to the
mod_usertrack enabled Apache web server. It is because if the request is for the first time, cookies are not yet baked on clients.
If you run scripts under mod_perl, this module tries to steal (not yet baked) cookie from Apache request notes.
See Apache for details.
AUTHOR
Tatsuhiko Miyagawa <miyagawa@bulknews.net>
This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.
SEE ALSO
Apache::Session, Apache::Session::Flex, mod_usertrack
perl v5.12.1 2007-03-19 Session::Generate::ModUsertrack(3)