漏洞修复:TLS 1.0 enabled
描述The web server supports encryption through TLS 1.0. TLS 1.0 is not considered to be "strong cryptography" as defined and required by the PCI Data Security Standard 3.2(.1) when used to protect sensi
其他组件扫描
AppScan 发现服务器支持较老的 TLS 版本(TLSv1.0 或 TLSv1.1)
描述
The web server supports encryption through TLS 1.0. TLS 1.0 is not considered to be "strong cryptography" as defined and required by the PCI Data Security Standard 3.2(.1) when used to protect sensitive information transferred to or from web sites. According to PCI, "30 June 2018 is the deadline for disabling SSL/early TLS and implementing a more secure encryption protocol – TLS 1.1 or higher (TLS v1.2 is strongly encouraged) in order to meet the PCI Data Security Standard (PCI DSS) for safeguarding payment data.
详情
The SSL server (port: 443) encrypts traffic using TLSv1.0
解决方案
nginx:
在server中添加ssl_protocols TLSv1.2 TLSv1.3;
例如:
server {
ssl_protocols TLSv1.2 TLSv1.3;
}
为开发者提供学习成长、分享交流、生态实践、资源工具等服务,帮助开发者快速成长。
更多推荐
0
0- 0
已为社区贡献5条内容
所有评论(0)