How do I disable RC4 ciphers for web server?

Business solution to host your own OpenVPN server with web management interface and bundled clients.
Post Reply
RuneTM
OpenVpn Newbie
Posts: 2
Joined: Sat Nov 02, 2013 2:20 pm

How do I disable RC4 ciphers for web server?

Post by RuneTM » Sat Nov 02, 2013 2:40 pm

As the title states, I am interested in completely disabling support of RC4 ciphers, for the webserver that the AS uses.

I have looked into this webpage, but as I understand it, it is for the actual VPN connection, not the webserver.

So, does anyone know how I can do this?

toddles
OpenVpn Newbie
Posts: 1
Joined: Thu Dec 11, 2014 6:48 pm

Re: How do I disable RC4 ciphers for web server?

Post by toddles » Tue Jan 27, 2015 9:08 pm

Hi-

I'm interested in removing the RC4 cipher from the webserver as well. Does anyone know of a way to do this?

Thanks,
Todd

bdelpizzo@kpmg.com
OpenVpn Newbie
Posts: 1
Joined: Wed Jun 24, 2015 4:35 pm

Re: How do I disable RC4 ciphers for web server?

Post by bdelpizzo@kpmg.com » Wed Jun 24, 2015 4:39 pm

Hi,

Has anyone been able to remove RC4 ciphers from the https web interface? We have switched to TLSv1.2 for both VPN and Web access, but port 443 is still allowing TLS_RSA_WITH_RC4_128_SHA

Any help would be greatly appreciated!

Thanks,
Brian

SPONGE
OpenVpn Newbie
Posts: 2
Joined: Thu Jun 20, 2013 4:39 pm

Re: How do I disable RC4 ciphers for web server?

Post by SPONGE » Mon Nov 30, 2015 2:54 pm

Seems no one has any idea. Looking for a solution to this too as our OpenVPN failed our network perimeter security/pen test because of weak RC4 ciphers and need to resolve asap.

djengineer
OpenVpn Newbie
Posts: 3
Joined: Sun Apr 05, 2015 7:52 pm

Re: How do I disable RC4 ciphers for web server?

Post by djengineer » Sat Dec 05, 2015 4:28 pm

Run this command on the server (make sure you are updated to atleast 2.0.21):
./sacli -k cs.openssl_ciphersuites -v 'DEFAULT:!EXP:!PSK:!SRP:!LOW:!RC4:!kRSA' ConfigPut
./sacli start

Post Reply