Check for DES encryption
If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.
|No outdated DES encryption supported
|Obsolete DES encryption supported
|Your server is configured to support the encryption feature DES (Cipher Suites), which is now considered insecure. This allows Man-in-the-middle attacks.
|The term Cipher Suite stands for a collection of cryptographic methods used (encryption of information). This collection includes the key exchange method, digital signature, encryption and cryptographic hash functions. This combination of cryptographic components ensures a secure connection between two parties, e.g. your mail program and a server. In the TLS protocol, the Cipher Suite (cryptographic procedure) determines which algorithms are to be used to establish a secure data connection and is decisively responsible for the security of the connection.
|Attackers can use DES encryption to decrypt the communication between your server and your customer's mail-client, as DES does not offer sufficient security. This can be used to decrypt mail content and misuse them for criminal purposes.
|If Obsolete DES encryption supported was reported, disable support for DES Cipher Suites in your web server software.