Hauptmenü öffnen

Siwecos β

Weak-Encryption-SMTP/EN

Version vom 7. Mai 2020, 10:41 Uhr von Siwebot (Diskussion | Beiträge)
(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)

Verification of the encryption strength of the certificate

If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.

Result positive Strong hash algorithm is used
Result negativ Weak hash algorithm
Description The message means that your server certificate has a weak hashing algorithm. This can potentially cause it to be falsified and is displayed as insecure in many mail programs.
Background Server certificates provide more security on the Internet and serve to verify (authenticity) the identity of servers. A certificate is issued by official, trustworthy institutions. A certificate is not forgeable. In normal life, a certificate is comparable to an identity card or a notarial certification. Similar to a passport, certificates also have a certain validity period. Certificates thus ensure secure data exchange and form an important basis of trust for operators, e.g. of online shops.
Consequence In the worst case, a weak hashing algorithm can cause attackers to create a fake certificate for your servers and impersonate your servers. This means that a server can impersonate another server. Criminals may be able to access your customers' personal data such as passwords or credit card information.
Solution/Tips If weak hash algorithm is reported, you should install a new certificate with a secure hash function. How to get a secure certificate you can read here: Install_Certificate (German only).