Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Discussion forum about ELOG  Not logged in ELOG logo
 Back  |  Find  |  Login  |  Help 
icon5.gif   results of security scan, posted by David Stops on Mon Nov 1 12:52:23 2021 
    icon2.gif   Re: results of security scan, posted by Stefan Ritt on Tue Nov 2 12:07:46 2021 
       icon2.gif   Re: results of security scan, posted by David Stops on Thu Nov 4 13:48:00 2021 
Message ID: 69407     Entry time: Mon Nov 1 12:52:23 2021     Reply to this: 69408
Icon: Question  Author: David Stops  Author Email: djs@star.sr.bham.ac.uk 
Category: Question  OS: Linux  ELOG Version: elog-3.1.4-2 
Subject: results of security scan 

Recently central IT scanned our elog server and reported the following "vulnerabilities"

  • 42873 (1) - SSL Medium Strength Cipher Suites Supported (SWEET32)
  • 51192 (1) - SSL Certificate Cannot Be Trusted
  • 65821 (1) - SSL RC4 Cipher Suites Supported (Bar Mitzvah)
  • 85582 (1) - Web Application Potentially Vulnerable to Clickjacking

Is there any easy way of preventing these

Thanks and Best Wishes

David

ELOG V3.1.5-3fb85fa6