I have a problem on our vSphere client machine. evvery 2 weeks nessus scans our servers(including this machine). They found vulnerabilities in this machine and vmservers.
below are the nessus scans:
Vulnerability Report
|
These are just examples of what we are encountering. I only justified this so that they will not close our server ports.
PLEASE HELP ME AS SOON AS POSSIBLE.
Thanks,
Rey Limosenero
Are you using Embedded ESXi version or installable.
if you using Embedded ESXi the default SSL certificate is generated for localhost.localdomain, to fix SSL vulnerability you need to generate new SSL certificate with correct hostname.
-
Regards,
Shyam Dhawale
I am new to this VMware ESX or ESXi.
This is what I see:
VMware ESX, 4.1.0,260247
we are running vSsphere Client 4.0 on windowsxp 64
so I guess we are running ESX.
If it is possible can you give me a step by step example how to generate new ssl?where to put this?
Is it the same as using openssl? Or can we use a star ' * ' certificate provided by third party?