Dear all Serv-U administrators, nice to meet you!
Due ISO 27002 / SOX we need to have NIST Compliance my MFT server v15.1.6.31.. Im using Comodo SSL Certificate.
To try to have NIST compliance without activate the FIPS140 ..
I did disabled the SSLx/TLS1.0,
Regading TLS1.1 I only have checked ciphers AES128-SHA, ECDHE-RSA-AES128-SHA, AES256-SHA and ECDHE-RSA-AES256-SHA.
Regarding TLS1.2 all are checked
SSH Ciphers only AES192 and over.. (others disabled)
SSH MACs all SHA2 only checked (others disabled)
SSH Keys Exchange all checked
In some services to check the compliance of NIST cipher suites and server configurations (like htbridge.com, ssllabs.com..) always give a grade A or A+, but not have the full compliance due the server seems to be not implemented OCSP Stapling.
do I doing something wrong in the configuration of MFT Server?
Thanks and BR!
Clik here to view.
