Check for anonymous key exchange
If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.
|Result positive||Anonymous key exchange is not supported|
|Result negativ||Anonymous key exchange is supported|
|Description||Your server is configured to allow connections without verifying the identity of your server.|
|Background||The term Cipher Suite stands for a collection of cryptographic methods used (encryption of information). This collection includes the key exchange procedure, the signature procedure, the encryption and cryptographic hash functions. This combination of cryptographic individual components ensures the secure connection in communication between two parties, e.g. your mail program and a server. In the TLS protocol, the cipher suite (cryptographic procedure) determines which algorithms are to be used to establish a secure data connection and is responsible for the security of the connection.|
|Consequence||Your server is ready to establish very weak connections, which are vulnerable to man-in-the-middle attacks. This can be used to read mail content and misuse them for criminal purposes.|
|Solution/Tips||If Anonymous key exchange is supported is reported, disable the "Anonymous key exchange" support in the encryption methodology.|