Page 1 of 1
Can't turn off 3DES
Posted: 2017/08/18 14:37:33
by mconstant
I am not having an easy time turning off 3DES to fix SWEET32. This is an .ova for a phone system but I am trying to remediate some security vulnerabilities. If I go to /etc/httpd/conf.d/ssl.conf I have SSLCipherSuite DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:!3DES. If I go to httpd.conf I have added the 3DES part to SSLCipherSuite HIGH:!aNULL:!MD5:!RC4:+SHA1 so it looked like SSLCipherSuite HIGH:!aNULL:!MD5:!RC4:!3DES:+SHA1, but each time I run nmap or Nessus it comes up with 3DES as a finding. Is there any other place I can shut it off?
Re: Can't turn off 3DES
Posted: 2017/08/18 16:28:42
by TrevorH
On what port is the report of the error?
Re: Can't turn off 3DES
Posted: 2017/08/18 19:03:51
by mconstant
For this machine it is 443.
Re: Can't turn off 3DES
Posted: 2017/08/18 19:45:35
by avij
Do you have some other software (or hardware) functioning as a reverse proxy for the web server?
Re: Can't turn off 3DES
Posted: 2017/08/18 20:27:45
by TrevorH
Check the output of ss -antpl | grep 443 and make sure the process that is listening on the port is the one you think it is. Check the running process to see what config file it is using and make sure it is the one you think it should be.
Re: Can't turn off 3DES
Posted: 2017/08/23 14:03:51
by mconstant
You were correct there was a different process using 443. It was a proxy. Thank you.