[stunnel-users] SSL Server Allows Anonymous Authentication Vulnerability
Michael Curran
mike_curran at hotmail.com
Thu Aug 7 19:55:36 CEST 2014
I am looking at this vulnerability reported from McAfee -- but we use stunnel to secure our communications and not the application directly.
Are these settings that I can make within the stunnel config -- or something comparable?
SSLProtocol -ALL +SSLv3 +TLSv1
SSLCipherSuite ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20140807/fbda988d/attachment.html>
More information about the stunnel-users
mailing list