Recently our IT department scanned my OPENVAS server (running on OEL) they found several sev 4 and 5 vulnerabilities. I need help remediating them. One thing is how do i foce it to use TLS1.2 and secondly how do i forced it not to use CBC? I wasnt able to find a ssl.conf file, so what gives?
Thanks
As you’re using an own installation (running on OEL) you’re not using the Greenbone Community Edition (GCE) VM but the Greenbone Source Edition (GSE) so i have moved this to the correct category.
I’m also closing this as a duplicate of Scanning gvm with gvm. Please follow up there if you have further questions around the topic on how to correctly configure your setup for a secure SSL/TLS communication.