Thanks Emanuele, but where are they located?



From: <ntop-***@listgateway.unipi.it> on behalf of Emanuele Faranda <***@ntop.org>
Reply-To: <***@unipi.it>
Date: Tuesday, September 26, 2017 at 10:05 AM
To: <***@unipi.it>
Cc: <***@listgateway.unipi.it>
Subject: Re: [Ntop] SSLV3 and cookies



Hi, I've created a new issue with the SSLv3 information. Please check out https://github.com/ntop/ntopng/issues/1484



The relevant files are HTTPServer.cpp and mongoose.c



Emanuele


On Tue, Sep 26, 2017 at 4:43 PM, Tim Wolak <***@gmail.com> wrote:


Thank you Emanuele, Can you please tell me the file location so I can make the correction. Also how do you disable SSLV3?



Thanks,

Tim



From: <ntop-***@listgateway.unipi.it> on behalf of Emanuele Faranda <***@ntop.org>
Reply-To: <***@unipi.it>
Date: Tuesday, September 26, 2017 at 9:04 AM
To: <***@unipi.it>
Cc: <***@listga teway.un ipi.it>
Subject: Re: [Ntop] SSLV3 and cookies



Hi Tim,



Please follow the issue on our github page https://github.com/ntop/ntopng/issues/1483



Thank you for reporting!

Emanuele


On Tue, Sep 26, 2017 at 1:53 PM, Tim Wolak <***@gmail.com> wrote:



Hi all,



After running a vulnerability scan it came back that ntop has SSLV3 enabled and SSL/TLS is missing the secure cookie attribute. Which files would I edit to take care of these?



Thanks in Advance!









_______________________________________________ Ntop mailing list Ntop@ listgate way.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop

_______________________________________________ Ntop mailing list ***@listgateway.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop