I know OpManager and ServiceDeskPlus are not subject to Heartbleed. However I'm stuck rekeying everything since we used wildcard certificates.
During this I'm looking to improve the SSL security of all of web based systems.
Couple of questions:
1) How can i disable weak ciphers?
2) How can we add support for TLS 1.2 (Guessing this may be a limitation of outdated java)
3) How can we enable HTTP Strict Transport Security
4) How can i disable Client Side Renegotiation
5) How can I enable support for Secure Renegotiation
Thanks for any insight you may have.