We're in the process of an security audit by one of our clients. In testing our Servu-FTP server using the Qualys SSL test we have 2 items that are reducing our rating that are server side settings. I'm wondering of anyone else has come across this and knows a resolution to these two items?
This server accepts the RC4 cipher, which is weak. Grade capped to B
The server does not support Forward Secrecy with the reference browsers
Thanks in advance if anyone has advice how to resolve these two issues.
Jim