Solved

SSL Issue

Posted on 2016-11-09
2
15 Views
Last Modified: 2016-11-28
I have this security issue on Windows 2008, do you know how to resolve it?

SSL 63-bit Block Size Ciper Suite Supported


SWEET32

Eric
0
Comment
Question by:Eric Donaldson
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41881568
This is due to an attack stated in https://sweet32.info

Configure cipher to use AES 128 and above or 3DES 168/168 instead. The weaker block cipher exist in 3DES and Blowfish e.g. support 64 bits block cipher. You can try iiscrypto tool. https://www.nartac.com/Blog/post/2013/04/19/IIS-Crypto-Explained.aspx

MS schannel control which cipher is supported which the tool above is like GUI to change it.
https://support.microsoft.com/en-us/kb/245030
0
 
LVL 63

Expert Comment

by:btan
ID: 41903934
As per advice given.
0

Featured Post

Create Professional Looking Email Signatures

Create "Professional HTML Email Signatures" with ease.
7 Day Money Back Guarantee if not 100% Satisfied.
Affordable - Try it out for 7 Days Totally Risk Free.
Installers provided for over 45 Email clients.
Both Windows & MAC Supported.
Highly Recommended!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question