Bienvenue, Invité
Nom d'utilisateur : Mot de passe : Se souvenir de moi

SUJET : How do I disable SSLv2 and weak ciphers

How do I disable SSLv2 and weak ciphers il y a 1 an 6 mois #93124

  • myaeger
  • Portrait de myaeger
  • Hors ligne
  • Fresh Lemon
  • Messages : 1
  • Karma: 0
I am new to an organization that has Lime Survey. A recent vulnerability scan identified that the server running Lime Survey allows SSLv2 and weak ciphers to it. I know how to turn these off in IIS, but I have no idea how to do it with Lime Survey. There doesn't seem to be an option in the admin tool, and I can't seem to find the Apache command line. Can someone please point me in the right direction? I need to get this closed ASAP.
L'administrateur a désactivé l'accès en écriture pour le public.

How do I disable SSLv2 and weak ciphers il y a 1 an 6 mois #93129

  • holch
  • Portrait de holch
  • Hors ligne
  • LimeSurvey Team
  • Messages : 2662
  • Remerciements reçus 318
  • Karma: 119
This should have nothing to do with Limesurvey, but with the underlying webserver.

So you need to check what webserver Limesurvey is running on. Probably Apache.

www.sslshopper.com/article-how-to-disabl...l-2.0-in-apache.html
Have a look at the manual! It is a really valuable source for information. Here some helpful links:
Manual (EN) | Question Types | Question Attributes | Workarounds

If you found this answer helpful and it saved you some time please consider a donation to the project to keep Limesurvey going!
L'administrateur a désactivé l'accès en écriture pour le public.
Modérateurs: ITEd
Temps de génération de la page : 0.163 secondes
Donation Image