How to disable support for the TLSv1.0 protocol for PCI Compliancy?

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Message
Author
KenSierra
500 Command not understood
Posts: 3
Joined: 2018-07-27 09:42
First name: Ken
Last name: Gurusamy

Re: How to disable support for the TLSv1.0 protocol for PCI Compliancy?

#16 Post by KenSierra » 2018-08-14 07:41

Dear All,

When doing a security scan, we get the issue below:

The server is configured to support ciphers known as static key ciphers. These ciphers
don't support "Forward Secrecy". In the new specification for HTTP/2, these ciphers have been blacklisted.

990/tcp open ftps

* Negotiated with the following insecure cipher suites: * TLS 1.2 ciphers: *
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA *
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA

How do I remove the above ciphers from Filezilla??

Thanks

Ken

User avatar
boco
Contributor
Posts: 26910
Joined: 2006-05-01 03:28
Location: Germany

Re: How to disable support for the TLSv1.0 protocol for PCI Compliancy?

#17 Post by boco » 2018-08-14 11:58

No support requests over PM! You will NOT get any reply!!!
FTP connection problems? Please read Network Configuration.
FileZilla connection test: https://filezilla-project.org/conntest.php
FileZilla Pro support: https://customerforum.fileZilla-project.org

Post Reply