Link to home
Start Free TrialLog in
Avatar of gman
gman

asked on

This server is vulnerable to MITM attacks because it supports insecure renegotiation. Grade set to F

Ran website through SSL Labs and got this warning

This server is vulnerable to MITM attacks because it supports insecure renegotiation. Grade set to F

Any ideas how to patch? It's running on a server 2003 box.

https://community.qualys.com/blogs/securitylabs/2009/11/05/ssl-and-tls-authentication-gap-vulnerability-discovered
Avatar of Gary
Gary
Flag of Ireland image

Should have been fixed in Windows Update

http://support.microsoft.com/kb/980436
ASKER CERTIFIED SOLUTION
Avatar of Rich Rumble
Rich Rumble
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of gman
gman

ASKER

IT's running Apache V2.2.25, Windows is fully updated.

Do you think disabling PCT, SSL 2, SSL 3 via the registry will do the trick?

Thanks,
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial