chabowski
By: chabowski

May 8, 2017 5:10 am

13,383 views

Speeding up SSL – All You Need to Know About HAProxy

The following article has been contributed by Marcus "Darix" Rückert, Senior Software Engineer in the Operations & Services Team at SUSE. It first appeared on his personal homepage.   For quite a few years now I have been a HAProxy user, even using snapshots in production for a very long time. […]

Read More



By: Bryan Lunduke

March 1, 2016 10:24 am

7,279 views

DROWN patches available for SUSE Linux Enterprise

Earlier today a security vulnerability known as "DROWN" was announced.  SUSE was on top of it and already has patches available for SUSE Linux Enterprise. What is "DROWN"? "DROWN" is an acronym that stands for "Decrypting RSA using Obsolete and Weakened eNcryption".  Also known as CVE-2016-0800. It allows an […]

Read More


Matthias G. Eckermann
By: Matthias G. Eckermann

October 15, 2014 9:17 am

12,128 views

The POODLE weakness in the SSL protocol (CVE-2014-3566)

Your immediate action is required In short: The POODLE attack to the SSL 3.0 protocol, published last night (https://www.openssl.org/~bodo/ssl-poodle.pdf) requires server and desktop administrators and desktop users to carefully review their security protocol settings in packages such as HTTP Servers (such as Apache, Tomcat), SMTP Servers (such as Postfix), IMAP Servers, ... […]

Read More



By: susethailand

December 8, 2009 12:07 pm

32,186 views

How to WebDAV over SSL using LDAP Authentication with Apache Web Server

WebDAV (Web-based Distributed Authoring and Versioning) is a web-base that allows users to edit files or manage their own files to the computer with Remote WebDAV. Why WebDAV Web Folders? Access files anywhere. And easy access permissions. Web access to files, web browser now. Users can not edit files within the same time. Security configuration […]

Read More



By: ndbreeding01

November 7, 2008 12:23 pm

6,772 views

Resolve Cipher and SSL Threats in Security Scans

The remote service supports the use of weak SSL ciphers. Modify the /etc/apache2/vhosts.d/vhost-ssl.conf with the following line: SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL   change to: SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXP:+eNULL" set in   The "!" prevents the export of the ciphers causing problems. Change +LOW to !LOW to prevent […]

Read More



By: utlemming

September 5, 2008 4:32 pm

42,464 views

stunnel: Securing the Insecure with SSL and Creating SSL Tunnels

Introduction to stunnel Just about every system administrator comes across a time when there is a need to encrypt some service. Perhaps your mail program just can't handle it. Or maybe you need to take a non-SSL aware VNC server and make it SSL-aware. Maybe you're just paranoid. For such moments in system administrating there […]

Read More



By: kryptikos

April 18, 2008 2:01 pm

6,560 views

Engaging The Juniper VPN SSL Client On A SUSE Box

Engaging The Juniper VPN SSL Client On A SUSE Box So they've done it again. You are cruising along using your most favorite VPN client when corporate up and decides it's time to upgrade to a new VPN solution. My company recently did this. With Juniper VPN SSL being the chosen client I was tagged […]

Read More



By: mfaris01

March 3, 2008 5:56 pm

36,453 views

Setting up SSL/TLS for Apache on SLES 10

Setting up an Apache web server for secure communications isn't as difficult as it seems. OES 2 comes preconfigured with SSL/TLS for eDirectory operations in the web based utilities, like iManager. If you plan on using your web server for Internet or public use, you may want to purchase a signed certificate from one of […]

Read More