native SSL support - disable insecure encryption ciphers

On various Hardware and OS systems: pi / windows / routers / nas, etc

Moderator: leecollings

Post Reply
dervogt
Posts: 26
Joined: Thursday 30 June 2016 9:00
Target OS: Raspberry Pi / ODroid
Domoticz version: BETA
Location: Amsterdam
Contact:
Contact dervogt

native SSL support - disable insecure encryption ciphers

Post by dervogt »

Hi to all,

did anyone already try to disable insecure encryption ciphers on the native SSL support in Domoticz?

Background:
I've scanned my local Domoticz with the SSLLabs SSL Server Test and it came to surface, that the rather insecure RC4 ciphers are still negotiated towards the client device/

Code: Select all

TLS_RSA_WITH_RC4_128_MD5 (0x4)   INSECURE	
TLS_RSA_WITH_RC4_128_SHA (0x5)   INSECURE
I'd rather disable them in the native support than setting up a reverse proxy on nginx if possible without huge code change.
Top
User avatar
Lectere
Posts: 24
Joined: Saturday 04 April 2015 8:52
Target OS: Raspberry Pi / ODroid
Domoticz version:
Location: The Netherlands
Contact:
Contact Lectere

Re: native SSL support - disable insecure encryption ciphers

Post by Lectere »

Good point, I don't even know which ones are accepted.
Effictent and redundant two-factor authentication? http://www.smspassword.com
Top
Post Reply

Return to “Installation, Compiling, Permissions, Security and Starting”

Who is online

Users browsing this forum: No registered users and 1 guest