What are security misconfiguration security vulnerabilities, and how do you fix them?

Table of contents
  1. Vulnerabilities requiring reconfiguration
  2. Specific certificate vulnerabilities
  3. Mitigated in latest versions

Vulnerabilities requiring reconfiguration

Harden TLS Session Resumption

Certificate Revocation

Configure Trusted Certificates

Enable HSTS

Enable missing SSL CAA record

Enable Secure Cookies

Secure TLS Configuration

Renew TLS Certificates

Prevent LUCKY13

Prevent CRIME

Prevent BREACH Attacks

Enable TLS Encryption

Enable Perfect Forward Secrecy

Increase TLS Key Size

Disable Deprecated SSL Protocol Versions

Configure SSL Cipher Order

Manage TLS Warning

Enable Security Headers

Specific certificate vulnerabilities

Disable SSL RC4

Disable SSL Insecure Algorithm

Prevent Ticketbleed

Prevent SSL DROWN

Prevent SSL SWEET32

Prevent SSL ROBOT

Prevent SSL LOGJAM

Prevent SSL POODLE

Prevent SSL FREAK

Prevent SSL BEAST

Mitigated in latest versions

Enable TLS_FALLBACK_SCSV

Secure SSL Renegotiation

Prevent CCS Injection

Prevent Heartbleed

Secure Client-Initiated SSL Renegotiation

Check SLL / TLS Vulnerabilities on your Website

SCAN SSL / TLS VULNERABILITIES FOR FREE NOW