we have flagged on vulnerability on sms as weak ssl/tls key exchange on port 19009
solution
change the SSL/TLS server configuration to only allow strong key exchanges. Key exchanges used on the server should provide at least 112 bits of
security, so the minimum key size to not flag this QID should be:
2048 bit key size for Diffie Hellman (DH) or RSA key exchanges
224 bit key
size for Elliptic Curve Diffie Hellman (EDCH) key exchanges.
here my question can we change the settings accordingly on above solution ? even its on port 19009 ?
if yes, how ?