I've upgraded GoAnywhere. Now I fail audits because of their ciphers. I
opened up a ticket with them basically asking if they can translate their
proprietary names into the standards.

My audit says I have to dump
TLSv1 WITH DES/3DES
EXP-DES-CBC-SHA
DES-CBC-SHA
EXP-EDH-RSA-DES-CBC-SHA
EDH-RSA-DES-CBC-SHA
EXP-ADH-DES-CBC-SHA
ADH-DES-CBC-SHA

TLSv1.1 WITH DES/3DES
DES-CBC-SHA
EDH-RSA-DES-CBC-SHA
ADH-DES-CBC-SHA

So, please explain to me which of your naming convention matches up with
these
Selected
aes128-cbc
3des-cbc
blowfish-cbc
aes192-cbc
aes256-cbc

And, should I use any of these or not?
Available
aes128-ctr
aes192-ctr
aes256-ctr

They have no idea what they are doing and my last communication to them
was to ask for a list of suggested replacement products. They keep
replying back that they will continue to use their proprietary naming
convention and it is my responsibility to translate that into what the
industry standards are.


Rob Berendt

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.