• Welcome, Guest. Please login.
 

How to disable PCT 1.0, SSL 2.0, SSL 3.0 on windows server

Started by admin, December 02, 2018, 06:44:59 am

Previous topic - Next topic

admin

When you run vulnerability scan, You get the below message, and in this article will see that how SSL 2.0 and 3.0 server as well as client disable on windows server. The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws.

https://www.tenable.com/plugins/nessus/20007
SSL Version 2 and 3 Protocol Detection

Synopsis
The remote service encrypts traffic using a protocol with known weaknesses.

Description
The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including:
- An insecure padding scheme with CBC ciphers.
- Insecure session renegotiation and resumption schemes.
An attacker can exploit these flaws to conduct man-in-the-middle attacks or to decrypt communications between the affected service and clients.
Regards,
YourITadmin

Quick Reply

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Warning: this topic has not been posted in for at least 120 days.
Unless you're sure you want to reply, please consider starting a new topic.

Note: this post will not display until it's been approved by a moderator.

Name:
Email:

Shortcuts: ALT+S save/post or ALT+P preview