Meike Chabowski
By: Meike Chabowski

May 8, 2017 5:10 am


Speeding up SSL – All You Need to Know About HAProxy

The following article has been contributed by Marcus "Darix" Rückert, Senior Software Engineer in the Operations & Services Team at SUSE. It first appeared on his personal homepage.   For quite a few years now I have been a HAProxy user, even using snapshots in production for a very long time. […]

Read More

By: Bryan Lunduke

March 1, 2016 10:24 am


DROWN patches available for SUSE Linux Enterprise

Earlier today a security vulnerability known as "DROWN" was announced.  SUSE was on top of it and already has patches available for SUSE Linux Enterprise. What is "DROWN"? "DROWN" is an acronym that stands for "Decrypting RSA using Obsolete and Weakened eNcryption".  Also known as CVE-2016-0800. It allows an […]

Read More

Matthias G. Eckermann
By: Matthias G. Eckermann

October 15, 2014 9:17 am


The POODLE weakness in the SSL protocol (CVE-2014-3566)

Your immediate action is required In short: The POODLE attack to the SSL 3.0 protocol, published last night ( requires server and desktop administrators and desktop users to carefully review their security protocol settings in packages such as HTTP Servers (such as Apache, Tomcat), SMTP Servers (such as Postfix), IMAP Servers, ... […]

Read More

By: susethailand

December 8, 2009 12:07 pm


How to WebDAV over SSL using LDAP Authentication with Apache Web Server

WebDAV (Web-based Distributed Authoring and Versioning) is a web-base that allows users to edit files or manage their own files to the computer with Remote WebDAV. Why WebDAV Web Folders? Access files anywhere. And easy access permissions. Web access to files, web browser now. Users can not edit files within the same time. Security configuration […]

Read More

By: ndbreeding01

November 7, 2008 12:23 pm


Resolve Cipher and SSL Threats in Security Scans

The remote service supports the use of weak SSL ciphers. Modify the /etc/apache2/vhosts.d/vhost-ssl.conf with the following line: SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL   change to: SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXP:+eNULL" set in   The "!" prevents the export of the ciphers causing problems. Change +LOW to !LOW to prevent […]

Read More

By: utlemming

September 5, 2008 4:32 pm


stunnel: Securing the Insecure with SSL and Creating SSL Tunnels

Introduction to stunnel Just about every system administrator comes across a time when there is a need to encrypt some service. Perhaps your mail program just can't handle it. Or maybe you need to take a non-SSL aware VNC server and make it SSL-aware. Maybe you're just paranoid. For such moments in system administrating there […]

Read More

By: kryptikos

April 18, 2008 2:01 pm


Engaging The Juniper VPN SSL Client On A SUSE Box

Engaging The Juniper VPN SSL Client On A SUSE Box So they've done it again. You are cruising along using your most favorite VPN client when corporate up and decides it's time to upgrade to a new VPN solution. My company recently did this. With Juniper VPN SSL being the chosen client I was tagged […]

Read More

By: mfaris01

March 3, 2008 5:56 pm


Setting up SSL/TLS for Apache on SLES 10

Setting up an Apache web server for secure communications isn't as difficult as it seems. OES 2 comes preconfigured with SSL/TLS for eDirectory operations in the web based utilities, like iManager. If you plan on using your web server for Internet or public use, you may want to purchase a signed certificate from one of […]

Read More