We are running a WCS appliance (Upgraded from WLSE) v188.8.131.52
This is running a Linux Distro and I have found refernce to a file called ssl.conf from within httpd.conf for the SSL settings.
Within this file is the Cipher setup string which include LOW and SSLv2. I have tried removing this reference, as well as adding a ! before each statement (apparently killing this option).
When I reboot the device I check the SSL.CONF file and it remains as it. I then scan the appliance and get a report back about weak ciphers and when I next check the SSL.CONF file it have "magically" reverted back to the original file.
So does anyone know HOW I can modify this? I have tried making the file read-only which doesn't help.