We can use the namp command
nmap -p 443 --script ssl-enum-ciphers 100.100.100.20
See if TLS1.0 / 1.1 is still enabled and looks for weak ciphers they will usually have a grade like C
These need to be disabled on the web server
Alternative test site can only test with URL for free:
https://www.ssllabs.com/ssltest/
No comments:
Post a Comment