Disable RC4 ciphers when not using nginx reverse proxy
Posted: Mon Dec 22, 2014 7:47 am
Hi all,
Yesterday I upgraded to Zimbra OS edition 8.6.0 (from 8.5.1) and part of the upgrade instructions detailed how to disable weak ciphers and SSLv3. The upgrade process disabled SSLv3 for me, however I can't find out how to disable RC4 as I don't use zimbra-proxy.
I've added all RC4 ciphers to the excluded list using "zmprov mcf" however when running SSL Labs I still have the following two ciphers showing up as available:
TLS_RSA_WITH_RC4_128_MD5
TLS_RSA_WITH_RC4_128_SHA
I'm assuming that the excluded ciphers list I updated with zmprov was only for if I have zimbra-proxy installed as I've restarted the appropriate services and even rebooted since making the changes.
Can anyone shed some light on how I may disable RC4 please?
Many thanks,
Verta
Yesterday I upgraded to Zimbra OS edition 8.6.0 (from 8.5.1) and part of the upgrade instructions detailed how to disable weak ciphers and SSLv3. The upgrade process disabled SSLv3 for me, however I can't find out how to disable RC4 as I don't use zimbra-proxy.
I've added all RC4 ciphers to the excluded list using "zmprov mcf" however when running SSL Labs I still have the following two ciphers showing up as available:
TLS_RSA_WITH_RC4_128_MD5
TLS_RSA_WITH_RC4_128_SHA
I'm assuming that the excluded ciphers list I updated with zmprov was only for if I have zimbra-proxy installed as I've restarted the appropriate services and even rebooted since making the changes.
Can anyone shed some light on how I may disable RC4 please?
Many thanks,
Verta