MS04-011 Breaks SSL Communication?
Posted on 2004-04-23
Something wierd happened. I downloaded and installed security update MS04-011 like a good little network administrator and suddenly I'm getting Schannel errors in my System Event Log. The event ID is 36874, which I can find no information on. The error message reads:
"An SSL connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed."
What I'm hearing from customers is that in trying to go to secure pages, they get a 'page cannot be displayed' message. It's only a few customers out of very many (maybe two or three out of hundreds are getting this error). Doing a little testing, I've found that if I change my browser settings to not use SSL 3.0, I cannot surf to secure pages on my site. Any idea on what happened? Has anyone else had this happen?
For reference, this is a Windows 2000 Server machine, running IIS 5 and SQL 2000. As far as I know (and I hope I would know), all service packs are installed.