Hello Guest

How to disable PCT 1.0, SSL 2.0, SSL 3.0 on windows server

  • 0 Replies
  • 53 Views
*

Offline admin

  • *****
  • 58
  • Always Crazy to Know More...
    • Networking Study and Your IT Admin
How to disable PCT 1.0, SSL 2.0, SSL 3.0 on windows server
« on: December 02, 2018, 06:44:59 AM »
When you run vulnerability scan, You get the below message, and in this article will see that how SSL 2.0 and 3.0 server as well as client disable on windows server. The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws.

https://www.tenable.com/plugins/nessus/20007
SSL Version 2 and 3 Protocol Detection

Synopsis
The remote service encrypts traffic using a protocol with known weaknesses.

Description
The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including:
- An insecure padding scheme with CBC ciphers.
- Insecure session renegotiation and resumption schemes.
An attacker can exploit these flaws to conduct man-in-the-middle attacks or to decrypt communications between the affected service and clients.
« Last Edit: December 02, 2018, 07:06:39 AM by admin »
Regards,
YourITadmin