ssl - 如何禁用 SSL 中的弱密码？

Question

我们在系统扫描期间遇到弱密码漏洞，为了解决这个问题，我在 openssl.conf 的字符串中否定了它们，但我仍然能够使用这些密码连接本地主机，例如“RC4”。

此漏洞已在网络服务器的 3128 和 8443 帖子中报告。

ssl.conf 输出:

#SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!RC4:!DES:!3DES

我仍然能够使用 RC4 密码连接到本地主机。

[XXXXXXXXXX ~]$ openssl s_client -cipher 'RC4' -connect 127.0.0.1:3128
CONNECTED(00000003)

这是正确的测试方法，还是我做错了什么？

openssl.conf 中的此更改是否会在下一次扫描期间消除此弱密码问题？

Answer 1

根据 the Apache SSLCipherSuite documentation (加粗我的):

This complex directive uses a colon-separated cipher-spec string consisting of OpenSSL cipher specifications to configure the Cipher Suite the client is permitted to negotiate in the SSL handshake phase. Notice that this directive can be used both in per-server and per-directory context. ...

如果不发布整个 ssl.conf 文件，就不可能知道发生了什么。

但我认为无论如何，解决您的问题的方法是在 Web 服务器上可靠地配置 SSL 的最简单方法:直接从 Mozilla SSL Configuration Generator 获取您的 ssl.conf 值。 .它简单、可重复且有据可查。

输入您系统的特定软件版本和所需的安全级别，您将获得一组配置设置以放置在您的配置文件中。

该站点及其用法的完整记录在 Mozilla's Security/Server Side TLS page :

The goal of this document is to help operational teams with the configuration of TLS on servers. All Mozilla sites and deployment should follow the recommendations below.

The Operations Security (OpSec) team maintains this document as a reference guide to navigate the TLS landscape. It contains information on TLS protocols, known issues and vulnerabilities, configuration examples and testing tools. Changes are reviewed and merged by the OpSec team, and broadcasted to the various Operational teams.

...

Recommended configurations

Three configurations are recommended. Pick the right configuration depending on your audience. If you do not need backward compatibility, and are building a service for modern clients only (post Firefox 27/Chrome 22), then use the Modern configuration. Otherwise, prefer the Intermediate configuration. Use the Old backward compatible configuration only if your service will be accessed by very old clients, such as Windows XP IE6, or ancient libraries & bots.

...