Willkommen, Gast
Benutzername: Passwort: Angemeldet bleiben:

THEMA: How do I disable SSLv2 and weak ciphers

How do I disable SSLv2 and weak ciphers 1 Jahr 8 Monate her #93124

  • myaeger
  • myaegers Avatar
  • OFFLINE
  • Fresh Lemon
  • Beiträge: 1
  • Karma: 0
I am new to an organization that has Lime Survey. A recent vulnerability scan identified that the server running Lime Survey allows SSLv2 and weak ciphers to it. I know how to turn these off in IIS, but I have no idea how to do it with Lime Survey. There doesn't seem to be an option in the admin tool, and I can't seem to find the Apache command line. Can someone please point me in the right direction? I need to get this closed ASAP.
Der Administrator hat öffentliche Schreibrechte deaktiviert.

How do I disable SSLv2 and weak ciphers 1 Jahr 8 Monate her #93129

  • holch
  • holchs Avatar
  • OFFLINE
  • LimeSurvey Team
  • Beiträge: 2950
  • Dank erhalten: 377
  • Karma: 124
This should have nothing to do with Limesurvey, but with the underlying webserver.

So you need to check what webserver Limesurvey is running on. Probably Apache.

www.sslshopper.com/article-how-to-disabl...l-2.0-in-apache.html
Have a look at the manual! It is a really valuable source for information. Here some helpful links:
Manual (EN) | Question Types | Question Attributes | Workarounds

If you found this answer helpful and it saved you some time please consider a donation to the project to keep Limesurvey going!
Der Administrator hat öffentliche Schreibrechte deaktiviert.
Moderatoren: ITEd
Ladezeit der Seite: 0.126 Sekunden
Donation Image