native SSL support - disable insecure encryption ciphers

On various Hardware and OS systems: pi / windows / routers / nas, etc
Post Reply
dervogt
Posts: 39
Joined: Thursday 30 June 2016 9:00
Target OS: Raspberry Pi
Domoticz version: BETA
Location: Amsterdam
Contact:

native SSL support - disable insecure encryption ciphers

Post by dervogt » Monday 24 October 2016 12:54

Hi to all,

did anyone already try to disable insecure encryption ciphers on the native SSL support in Domoticz?

Background:
I've scanned my local Domoticz with the SSLLabs SSL Server Test and it came to surface, that the rather insecure RC4 ciphers are still negotiated towards the client device/

Code: Select all

TLS_RSA_WITH_RC4_128_MD5 (0x4)   INSECURE	
TLS_RSA_WITH_RC4_128_SHA (0x5)   INSECURE	
I'd rather disable them in the native support than setting up a reverse proxy on nginx if possible without huge code change.

User avatar
Lectere
Posts: 61
Joined: Saturday 04 April 2015 8:52
Target OS: Raspberry Pi
Domoticz version:
Location: The Netherlands
Contact:

Re: native SSL support - disable insecure encryption ciphers

Post by Lectere » Tuesday 29 August 2017 11:29

Good point, I don't even know which ones are accepted.
Effictent and redundant two-factor authentication? http://www.smspassword.com

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest