Check for weak encryption functions
If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.
|Result positive||No weak export encryption supported|
|Result negativ||Weak export encryption supported|
|Description||Your server is configured to use intentionally insecure encryption methods. This allows you to decrypt communication with your server using Man-in-the-middle attacks.|
|Background||The term Cipher Suite stands for a collection of cryptographic methods used (encryption of information). This collection includes the key exchange method, digital signature, encryption and cryptographic hash functions. This combination of cryptographic components ensures a secure connection between two parties, e.g. your mail program and a server. In the TLS protocol, the Cipher Suite (cryptographic procedure) determines which algorithms are to be used to establish a secure data connection and is decisively responsible for the security of the connection.|
|Consequence||Attackers can easily decrypt the communication between your server and the mail program with a weak encryption methodology. This can be used to read out mail content and misuse them for criminal purposes.|
|Solution/Tips||If Weak Export Encryption Supported is reported, disable support for EXPORT encryption methods in the web server.|