Scribd Logo
Upload

Welcome to Scribd!

  • SSL Ciphers 2

    Uploaded by

    Jetbar Dolok Saribu
    4 views1 page
    SSL Ciphers 2

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    SSL Ciphers 2

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    4 views1 page

    SSL Ciphers 2

    Uploaded by

    Jetbar Dolok Saribu
    SSL Ciphers 2

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    TLS_RSA_WITH_3DES_EDE_CBC_SHA

    TLS_RSA_WITH_AES_128_CBC_SHA

    TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
    TLS_DHE_RSA_WITH_AES_128_CBC_SHA
    TLS_DHE_RSA_WITH_DES_CBC_SHA

    TLS_RSA_EXPORT_WITH_DES40_CBC_SHA
    TLS_RSA_EXPORT_WITH_RC4_40_MD5
    TLS_RSA_WITH_DES_CBC_SHA
    TLS_RSA_WITH_RC4_128_MD5
    TLS_RSA_WITH_RC4_128_SHA

    su - zimbra
    [zimbra@mail ]$ zmprov gcf zimbraReverseProxySSLCiphers
    zimbraReverseProxySSLCiphers: !SSLv2:!MD5:HIGH

    [zimbra@mail ]$ zmprov mcf zimbraReverseProxySSLCiphers '!SSLv2:!SSLv3:!MD5:!


    RC4:HIGH'
    zimbraReverseProxySSLCiphers: !SSLv2:!SSLv3:!MD5:!RC4:HIGH

    [zimbra@mail ]$ zmprov mcf zimbraReverseProxySSLCiphers 'AES128:HIGH:!aNULL:!


    eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4'

    [zimbra@mail ]$ zmprov gcf zimbraReverseProxySSLCiphers


    [zimbra@mail ]$ zmprov gcf zimbraMailboxdSSLProtocols

    zmprov mcf +zimbraSSLExcludeCipherSuites SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA


    zmprov mcf +zimbraSSLExcludeCipherSuites DHE_RSA_WITH_AES_128_CBC_SHA
    zmprov mcf +zimbraSSLExcludeCipherSuites DHE_RSA_WITH_DES_CBC_SHA

    zmprov mcf +zimbraSSLExcludeCipherSuites RSA_EXPORT_WITH_DES40_CBC_SHA


    zmprov mcf +zimbraSSLExcludeCipherSuites RSA_EXPORT_WITH_RC4_40_MD5
    zmprov mcf +zimbraSSLExcludeCipherSuites RSA_WITH_DES_CBC_SHA
    zmprov mcf +zimbraSSLExcludeCipherSuites RSA_WITH_RC4_128_MD5
    zmprov mcf +zimbraSSLExcludeCipherSuites RSA_WITH_RC4_128_SHA

    zmmailboxdctl restart

    The disabled ciphers in Zimbra by default include these:

    $ zmprov gcf zimbraSSLExcludeCipherSuites


    zimbraSSLExcludeCipherSuites: SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
    zimbraSSLExcludeCipherSuites: DHE_RSA_WITH_AES_128_CBC_SHA
    zimbraSSLExcludeCipherSuites: DHE_RSA_WITH_DES_CBC_SHA
    zimbraSSLExcludeCipherSuites: RSA_EXPORT_WITH_DES40_CBC_SHA
    zimbraSSLExcludeCipherSuites: RSA_EXPORT_WITH_RC4_40_MD5
    zimbraSSLExcludeCipherSuites: SSL_RSA_EXPORT_WITH_RC4_40_MD5
    zimbraSSLExcludeCipherSuites: RSA_WITH_DES_CBC_SHA
    zimbraSSLExcludeCipherSuites: RSA_WITH_RC4_128_MD5
    zimbraSSLExcludeCipherSuites: RSA_WITH_RC4_128_SHA

    You might also like