Dell Unity: Nessus Full Safe Vulnerability Security Scan recommends disabling SSL/TLS CBC ciphers
요약: Nessus Full Safe Vulnerability Security Scan recommends disabling specific SSL/TLS CBC ciphers on Unity. Currently, these ciphers cannot be disabled on Unity.
이 문서는 다음에 적용됩니다.
이 문서는 다음에 적용되지 않습니다.
이 문서는 특정 제품과 관련이 없습니다.
모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
보안 문서 유형
Security KB
문제 요약
Nessus Full Safe Vulnerability Security Scan recommends disabling specific SSL/TLS CBC ciphers.
Supported CBC ciphers on Unity can also be detected through nmap script "ssl-enum-ciphers" over port 443.
세부 정보
After Unity with TLS 1.2 or higher is enabled, the Full Safe Vulnerability Security Scan may still report the following recommendations to remove CBC ciphers supported by Unity:
"The remote service supports the use of SSL Cipher Block Chaining ciphers, which combine previous blocks with subsequent ones"
"The remote host has open SSL/TLS ports which advertise discouraged cipher suites"
"The remote host supports the use of SSL ciphers that operate in Cipher Block Chaining (CBC) mode. These cipher suites offer additional security over Electronic Codebook (ECB) mode, but have the potential to leak information if used improperly"
CBC ciphers supported by Unity (OE 5.2.0.0.5.173) can also be detected using nmap script "ssl-enum-ciphers" over port 443:
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
TLS_DHE_RSA_WITH_AES_256_CBC_SHA
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
권장 사항
Currently, CBC ciphers cannot be disabled on Unity arrays and no workaround is available.
법적 고지 사항
해당 제품
Dell EMC Unity문서 속성
문서 번호: 000202982
문서 유형: Security KB
마지막 수정 시간: 20 1월 2026
버전: 2
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.