Hi,
We've recently had a PEN test. We're looking to achieve necessary accreditation for Cyber Security.
One of the things that the PEN Test found was a vulnerability on the UTM's public WAN address and other systems that Sophos UTM is providing Web Protection for based on Cipher strength. The report recommends the following : Reconfigure the affected application if possible to avoid use of medium strength ciphers. Attached is a list of the ciphers in question.
The system we use is an ASG425 (about to be replaced by an SG430) running firmware version 9.506-2. Looking at google I can see there is some commentary around using shell to adjust the ciphers but there is also some discussion about system warranty being affected. We would want to comply with the recommendations in the report and I was wondering what would be the best way about achieving that.
This thread was automatically locked due to age.
