×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
hsplunk
Splunk Employee
Member since: ‎08-26-2021
‎09-16-2021
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎08-26-2021
View All

rapid7 for vulnerability scanner and it is detecti...

by Splunk Employee in All Apps and Add-ons
‎08-26-2021 09:54 PM
‎08-26-2021 09:54 PM
We are using rapid7 for vulnerability scanner and it is detecting vuln in Cipher negotiation. It says Splunk is negotiating below Ciphers: PORT STATE SERVICE VERSION 8443/tcp open ssl/http Splunkd httpd |_http-server-header: Splunkd | ssl-enum-ciphers: | TLSv1.2: | ciphers: | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (secp256r1) - A | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) - A | TLS_RSA_WITH_AES_128_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A | compressors: | NULL | cipher preference: client |_ least strength: A As per Rapid7 solution, below negotiation should not be used. | TLS_RSA_WITH_AES_128_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 2048) - A | TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A How can we resolve this issue? ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎09-16-2021 03:12 AM