Jump to content
View in the app

A better way to browse. Learn more.
FMForums.com

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

SSL config question

Dr. Zathras
in FileMaker DataAPI / oData

Featured Replies

We have a JavaScript-based custom web interface to a FM database running on FileMaker Server v20.1.2.207, macOS 13.7.2. Everything is working well, but our security-mandated Rapid7 scans report the following vulnerabilities:

TLS/SSL Server Supports The Use of Static Key Ciphers

TLS 1.2 ciphers:

    TLS_RSA_WITH_AES_128_CBC_SHA

    TLS_RSA_WITH_AES_128_CBC_SHA256

    TLS_RSA_WITH_AES_128_GCM_SHA256

    TLS_RSA_WITH_AES_256_CBC_SHA

    TLS_RSA_WITH_AES_256_CBC_SHA256

    TLS_RSA_WITH_AES_256_GCM_SHA384

HTTP OPTIONS Method Enabled

I'm assuming the relevant config file to edit is /Library/FileMaker Server/HTTPServer/conf/extra/httpd-ssl.conf

Does anybody know exactly which edits to make that will disable the vulnerable ciphers and HTTP options?

Thanks.

 

Create an account or sign in to comment

https://fmforums.com/topic/110709-ssl-config-question/
Go to topic listing

Important Information

By using this site, you agree to our Terms of Use.

I accept

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.