Code: Select all
ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256
After you change this option, you need to restart the WingFTP service.
Now you can test the strength of the SSL ciphers again, you can test it with openssl tool, most Linux system will install openssl by default, Windows users can download it from here: https://slproweb.com/products/Win32OpenSSL.html
You can type the following commands to check whether the server supports weak or medium SSL ciphers:
Code: Select all
openssl s_client -connect mydomain.com:443 -cipher EXP:LOW
openssl s_client -connect mydomain.com:443 -cipher EXP:MEDIUM
Code: Select all
CONNECTED(00000003)
140004449822376:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:177:
Code: Select all
CONNECTED(00000003)
depth=1 /C=BE/O=GlobalSign nv-sa/CN=GlobalSign Domain Validation CA - G2