Endpoint Protection

 View Only

  • 1.  SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)

    Posted Jul 07, 2015 10:30 AM

     

      Hi All,

     

    We have a Symantec Endpoint Protection Manager 12.1.6 installed on a Windows Server 2012 R2 machine. On our latest vulnerability scan we recieved message:

     

     

    " SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)

     

    Description
    The remote host allows SSL/TLS connections with one or more Diffie-Hellman moduli less than or equal to 1024 bits. Through cryptanalysis, a third party may be able to find the shared secret in a short amount of time (depending on modulus size and attacker resources). This may allow an attacker to recover the plaintext or potentially violate the integrity of connections.
     
    Solution
    Reconfigure the service to use a unique Diffie-Hellman moduli of 2048 bits or greater.  "
     
     
     
     
     These vulnerability issues are on tcp ports: 8443, 8445 and 8446, ports that are used by Symantec Endpoint Protection Manager.
     
     
     So please tell us, is there any solution to this issue?
     
     
    Thanks in advance!


  • 2.  RE: SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)

    Posted Jul 07, 2015 10:41 AM

    Would be new for 12.1.6 so you should contact support.

    You can create firewall rules to block access to those ports although you will lose some functionality.