Perfect Forward Secrecy (PFS) is unavailable with the server configuration. If the TLS encryption is broken once, recordings of previous connections are not secure and may be decrypted.

Security Assessment

Security Assessment Enable Perfect Forward Secrecy

CVSS Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

Perfect Forward Secrecy (PFS) is unavailable with the server configuration. If the TLS encryption is broken once, recordings of previous connections are not secure and may be decrypted.

Guides

To enable PFS, configure your webserver to only use recent cipher suites that include PFS. See the following wiki article for details: Secure TLS Configuration

Scan for free now