We need to remove insicure SSL options (SSL 2.0 ad 3.0), because these versions of SSL are affected by several cryptographic flaws.
Policies of our customers mark these options as high risk vulnerability.
How can we disable them?
I think is very important resolve security issue in production environments.
As I reported, disable SSL 2.0/3.0 and some deprecated ciphers as RC4 should be mandatory.
sure, we will feedback to our development team.
Hi, do you have any news on resolution of this issue?
please, could you tell me if, in recent versions of H5Stream, insecure ssl options has been fixed?