Project

General

Profile

Tâche #11344

Désactiver le SSLv3 sur FTP

Added by Joël Cuissinat over 6 years ago. Updated almost 6 years ago.

Status:
Fermé
Priority:
Normal
Assigned To:
Start date:
04/20/2015
Due date:
% Done:

100%

Estimated time:
2.00 h
Spent time:
Remaining (hours):
0.0

Associated revisions

Revision 6ec74e76 (diff)
Added by Laurent Flori almost 6 years ago

Désactivation de ssl3 et des chaines de chriffrements faibles

fixes: #11344 @1h

Revision 89c330af (diff)
Added by lolo almost 6 years ago

Désactivation de SSLv3 et des chaines de chriffement faibles

fixes: #11344 @1h

History

#1 Updated by Laurent Flori almost 6 years ago

  • Assigned To set to Laurent Flori

#2 Updated by Laurent Flori almost 6 years ago

  • Status changed from Nouveau to En cours

#3 Updated by Laurent Flori almost 6 years ago

  • Status changed from En cours to Résolu
  • % Done changed from 0 to 100

#4 Updated by Anonymous almost 6 years ago

#5 Updated by Joël Cuissinat almost 6 years ago

  • Status changed from Résolu to Fermé
  • Remaining (hours) changed from 2.0 to 0.0
  • Avant (2.5.1) :
    root@scribe:~# echo | openssl s_client -quiet -connect localhost:ftp -starttls ftp -ssl3
    depth=1 C = FR, O = Ministere Education Nationale (MENESR), OU = 110 043 015, OU = ac-test, CN = CA-scribe
    verify error:num=19:self signed certificate in certificate chain
    verify return:0
    220 ProFTPD 1.3.5rc3 Server (etb1) [127.0.0.1]
    500 Invalid command: try being more creative
    
  • Après (2.5.2) :
    root@scribe:~# echo | openssl s_client -quiet -connect localhost:ftp -starttls ftp -ssl3
    140471520286368:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1262:SSL alert number 40
    140471520286368:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:598:
    

Also available in: Atom PDF