The solution is to disable EXPORT ciphers on all servers in the environment.
Note that there is a new version of OpenSSL available in some of the ITMS pointfixes and hotfixes.
- See Microsoft’s article https://support.microsoft.com/en-us/kb/245030 on how to do this on Windows computers.
- The suggestion below works for Apache servers - Linux Package Servers and CEM Internet Gateway:
Add !EDH to SSLCipherSuites option in the SSL section of the Apache config file.
Example: SSLCipherSuites !EDH
For more information, see the following article: