Key-Exchange-Method/EN: Unterschied zwischen den Versionen

Aus Siwecos
Wechseln zu: Navigation, Suche
(Die Seite wurde neu angelegt: „=== <span style="color:#c31622">{{:{{PAGENAME}}/Headline}}<span>=== {| class="wikitable" |'''Check'''|| {{:{{PAGENAME}}/Negative}} |- |'''Beschreibung'''…“)
 
Zeile 15: Zeile 15:
  
 
[[Category:Siwecos-Scanner]]
 
[[Category:Siwecos-Scanner]]
[[Category:{{:{{PAGENAME}}/Category}}]]
+
{{:{{PAGENAME}}/Category}}
 
[[Category:Glossar]]
 
[[Category:Glossar]]

Version vom 8. März 2019, 08:19 Uhr

Check for anonymous key exchange

Check Anonymous key exchange supported
Beschreibung Your web server/website is configured to allow connections without verifying the identity of your server.
Hintergrund The term cipher suite stands for a collection of cryptographic methods (encryption of information). This collection contains the key exchange method, the signature method, the encryption, and cryptographic hash function. This combination of cryptographic components ensures that there is a secure connection for the communication between two parties, for example your browser and a web server or website. In the TLS protocol (Transport Layer Security), the (cipher suite (cryptographic method) determines which algorithms are used to establish a secure data connection, and it ensures that the connection is secure.
Auswirkung Your server is ready to establish very weak connections, which are vulnerable to Man-in-the-middle attacks. This can be used, for example, to read out passwords or credit card information and misuse them for criminal purposes.
Lösung / Tipps If Anonymous key exchange is supported is reported, disable "Anonymous key exchange" support in Encryption Methodology.