Weakened-Encryption-POP3/EN
Version vom 7. Mai 2020, 11:41 Uhr von Siwebot (Diskussion | Beiträge)
Check for weak encryption functions
If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.
Result positive | No weak export encryption supported |
Result negativ | Weak export encryption supported |
Description | Your server is configured to deliberately use insecure encryption methods. This makes it possible to decrypt communication with your server using man-in-the-middle attacks. |
Background | The term Cipher Suite stands for a collection of cryptographic methods used (encryption of information). This collection includes the key exchange procedure, the signature procedure, the encryption and cryptographic hash functions. This combination of cryptographic individual components ensures the secure connection in communication between two parties, e.g. your mail program and a server. In the TLS protocol, the cipher suite (cryptographic procedure) determines which algorithms are to be used to establish a secure data connection and is responsible for the security of the connection. |
Consequence | Attackers can easily decrypt the communication between your server and the mail program with a weak encryption methodology. This can be used to read out mail content and misuse them for criminal purposes. |
Solution/Tips | If Weak Export Encryption Supported is reported, disable support for EXPORT encryption methods in the web server. |