解決GVM弱掃Windows環境報告包含「NVT: SSL/TLS: Deprecated TLSv1.0 and TLSv1.1 Protocol Detection」弱點

1. 搜尋 regedit.exe,開啟登陸檔編輯模式

2.新增以下登陸檔鍵值,可停用舊版本TLSv1.0 與 TSLv1.1,於該主機當Server腳色及Client腳色時,亦可將下方鍵值存成一個disable_deprecated_tls.reg檔案,並以滑鼠連續點檔案兩下匯入登陸檔:

-----------------------------------------------------

 Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]

"DisabledByDefault"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]

"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]

"DisabledByDefault"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]

"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server]

"DisabledByDefault"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server]

"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client]

"DisabledByDefault"=dword:00000001

--------------------------------------

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client]

"Enabled"=dword:00000000

位置: 台灣臺北市

這個網誌中的熱門文章

Upgrade php and httpd(apache) on CentOS 7

圖片
1. for latest php from https://rpms.remirepo.net/ $ wget https://rpms.remirepo.net/enterprise/remi-release-7.rpm $ sudo  rpm -ivh remi-release-7.rpm $ sudo yum -y --enablerepo='remi-php74' --enablerepo='remi'  install php-7.4.29       2. for latest httpd from https://repo.codeit.guru/ $ wget https://repo.codeit.guru/codeit-repo-release.el7.rpm $ sudo rpm -ivh codeit-repo-release.el7.rpm $ sudo yum -y install httpd-2.4.53 3. If error message occurred on httpd-2.4.53 + php 5.4.X (Invalid command php...) modify /etc/httpd/conf.modules.d/00-mpm.conf disable mpm_event with #(sharp) and enable mpm_prefork with unsharp references https://rpms.remirepo.net/ https://repo.codeit.guru/ https://repo.codeit.guru/packages/centos/7/x86_64/  https://repo.ius.io/ https://tw.arip-photo.org/320126-error-start-apache-php-value-MDGNGZ https://www.datadoghq.com/blog/monitoring-apache-web-server-performance/#prefork-mpm #Cyber Security    
閱讀完整內容

Installing VMware workstation pro on Ubuntu 22.X (Jammy Jellyfish)

圖片
 1. Download workstation pro for vmware website https://www.vmware.com/tw/products/workstation-pro/workstation-pro-evaluation.html e.g.  VMware-Workstation-Full-16.2.3-19376536.x86_64.bundle 2. Download modules patch from github https://github.com/mkubecek/vmware-host-modules/releases/tag/w16.2.3-k5.18 tarball https://github.com/mkubecek/vmware-host-modules/archive/refs/tags/w16.2.3-k5.18.tar.gz 3. Execute by sudo $ chmod 755 VMware-Workstation-Full-16.2.3-19376536.x86_64.bundle $ sudo apt-get -y install build-essential $ sudo VMware-Workstation-Full-16.2.3-19376536.x86_64.bundle 4.Execude by account $ vmware 5. patch vmmon and vmnet $ tar zxvf w16.2.3-k5.18.tar.gz  $ cd  vmware-host-modules-w16.2.3-k5.18 $ tar cvf vmnet.tar  vmnet-only && sudo cp vmnet.tar /usr/lib/vmware/modules/source/ $ tar cvf vmmon.tar vmmon-only && sudo cp vmmon.tar /usr/lib/vmware/modules/source/ $ sudo vmware-modconfig --console --install-all         ...
閱讀完整內容