I am running Zimbra 4.5.10 32-bit under SuSE Enterprise 10 SP1 patched up to date. When scanning the installation with Nessus 3, I get medium risk vulnerabilities flagged as "Weak Supported SSL Ciphers Suites". These occur for both https (443/tcp) and pop3s (995/tcp). I am trying to find the place(s) in the configuration to disable the export (<56 bit) level ciphers.

Any ideas?

Thanks,
John Cox