AnsweredAssumed Answered

This server supports anonymous (insecure) suites

Question asked by Jay Young on Dec 29, 2014
Latest reply on Dec 29, 2014 by Adm Selec

One of my websites is under shared hosting and I plan to process payments through this website. I had an SSL certificate installed correctly on the website, but the SSL test says the server supports 4 insecure anonymous cipher suites.

 

TLS_ECDH_anon_WITH_RC4_128_SHA (0xc016)   INSECURE

TLS_ECDH_anon_WITH_AES_128_CBC_SHA (0xc018)   INSECURE

TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA (0xc017)   INSECURE

TLS_ECDH_anon_WITH_AES_256_CBC_SHA (0xc019)   INSECURE


Is this part of the package with shared hosting and will it be of an issue? The Qualys SSL test has given a score of F and I fear this may make my website a target. The web host says everything is working correctly and it is not an issue.

Outcomes