| Home | Register | Members | Search | Windows Vista Tips | File Database | Links |
 |
| Thread Tools | Display Modes |
|
Guest
Posts: n/a
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
Hello,
"Weak Supported SSL Ciphers Suites - The remote host supports the use of SSL ciphers that offer either weak encryption or no encryption at all." This vulnerability is caused by the server accepting the use of weaker encryption methods than the recommended 128-bit encryption. To ensure your server only supports the highest level of encrypted communications, you must disable supporting weaker encryption types through the system's registry. This is a simple registry edit that is applied to resolve the vulnerability. Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\DES 56/56] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC2 40/128] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC4 40/128] "Enabled"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC4 56/128] "Enabled"=dword:00000000 Hope this helps! -Brock "InputIO" <> wrote in message news  524CD71-1EE4-495B-ABEB-...> Hi guys, > > it's possibe that on server where not installed IIS or start a HTTPSSL > service that exist any vulnerability about : > > "SSL Weak Cipher Suites Supported" ? > > A consultant tell my that have make a scan on system and found this > problem ; if it's possible how i can fix it ? > > Thanks in advance. > |
|
|
|
|
|||
|
Guest
Posts: n/a
|
thank you!
"Brock Hensley" <> ha scritto nel messaggio news:627475CB-896A-4D39-BD62-... > Hello, > > "Weak Supported SSL Ciphers Suites - The remote host supports the use of > SSL ciphers that offer either weak encryption or no encryption at all." > > This vulnerability is caused by the server accepting the use of weaker > encryption methods than the recommended 128-bit encryption. To ensure your > server only supports the highest level of encrypted communications, you > must disable supporting weaker encryption types through the system's > registry. This is a simple registry edit that is applied to resolve the > vulnerability. > > Windows Registry Editor Version 5.00 > > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\DES > 56/56] > "Enabled"=dword:00000000 > > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC2 > 40/128] > "Enabled"=dword:00000000 > > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC4 > 40/128] > "Enabled"=dword:00000000 > > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SecurityProviders\SCHANNEL\Ciphers\RC4 > 56/128] > "Enabled"=dword:00000000 > > Hope this helps! > -Brock > > "InputIO" <> wrote in message > news 524CD71-1EE4-495B-ABEB-...>> Hi guys, >> >> it's possibe that on server where not installed IIS or start a HTTPSSL >> service that exist any vulnerability about : >> >> "SSL Weak Cipher Suites Supported" ? >> >> A consultant tell my that have make a scan on system and found this >> problem ; if it's possible how i can fix it ? >> >> Thanks in advance. >> > |
|
|
|
|
|||
|
|
| |
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Standard Windows 2003 R2 - supported RAM and processors? | boe | Windows Server | 1 | 02-12-2007 05:43 PM |
| SSL weak cipher | Mark Scholl | Windows Small Business Server | 1 | 12-07-2006 10:17 AM |
| Are Windows 2003 X64 bit resource kit tools available or supported? | Windows 64 Bit | 5 | 03-31-2006 11:36 PM | |
| Windows 2003 Striping Supported? | PYN_2005 | Windows Server | 1 | 11-21-2005 03:55 PM |
| Supported Client in Windows 2003 | stargates | Windows Server | 1 | 08-10-2004 02:53 AM |
Linear Mode
