What are the Ciphers are being used in the Server and Client end?

Hi Robert,

Thanks for your answer.

i would also want to know what cipher suites need to be used and what's listed/used currently?

Please Verify:-

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 - not listed

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 - not listed

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 - listed

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 - listed

Hi @Bulusu Venkatesh 

The ones not listed are not supported.

Hi Robert,

Thanks for your answer.

I would also like to know if the client requires some Ciphers that are not listed. will you able to provide it to them?

Hi @Bulusu Venkatesh!

Is your client getting an error when trying to reach the API? I would expect that list to include all the supported ciphers. 

Hi Robert,

Thanks for your answer.

Can you please confirm the cipher suites that are not listed, can they be also supported if a client requires it?

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 - not listed

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 - not listed

Hi Robert,

can you please confirm me that the cipher suite provided below is weak, if required statuspage.io can remove it for me from their support?

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027)   ECDH secp256r1 (eq. 3072 bits RSA)   FS   WEAK

Hi @Bulusu Venkatesh !

That cipher is likely included so Statuspages still render on some older devices/browsers. However, it won't be used as long as the client supports any of the others listed (it's last on the server-preferred order). 

While a cipher may be labeled as weak in that test, that does not necessarily mean it's insecure.

Unfortunately, at this time, we do not have a method to selectively disable or enable specific ciphers for a page. However, our team is always reviewing these connection requirements to ensure they align with current best practices and industry standards