Discussion board where members can learn more about Qlik Sense deployments which are governed and self-service.
I need your help/suggation on the vulnerabilities.
how to remediate the "SSL Medium Strength Cipher Suites Supported (SWEET32)" -port -4953 -vulnerability.
When I was check with the port number, it is showing the file as "nl-app-search.exe"
but we are not getting whats the issue is with it ?
Can any one know the issue of it please let us know.
really appriciate your help.
So this is more of a Windows issues than a Qlik Sense issue. What version of Qlik Sense are you running? There is a Qlik Sense Help entry as well as couple of Qlik Support articles regarding remediation of SSL Medium Strength Cipher Suites Supported (SWEET32) to review:
1st of all thank you for your response.
and we were followed all of the above instructions already, that was helped us to resolve the many things but we stucked with the only one that sweet32 with port-4953.
Really we need help on this. as I told that , when we check with the port number, it is pointing to "nl-app-search.exe".
Thanks for your response.
But unfortunately, the issue is not yet resolved after upgrading to Nov 2021, Patch-4 also.
please let me know , if any changes or settings required for remediate the port-4953 vulnerability.
Can you try this? (always make sure you have backups before changing the configuration)
1. Open C:\Program Files\Qlik\Sense\ServiceDispatcher\services.conf in edit mode(admin)
2. Add "--tls-min-version=TLS12" as nl-app-search parameter as shown below
yes, we applied these changes also, but no luck this time also.
still Sweet32 for port-4953 vulnerability is exist.
please take it as priority one, we need it very urgent and important to us.