Improve company productivity with a Business Account.Sign Up

x
?
Solved

SSL Issue

Posted on 2016-11-09
2
Medium Priority
?
33 Views
Last Modified: 2016-11-28
I have this security issue on Windows 2008, do you know how to resolve it?

SSL 63-bit Block Size Ciper Suite Supported


SWEET32

Eric
0
Comment
Question by:Eric Donaldson
  • 2
2 Comments
 
LVL 66

Accepted Solution

by:
btan earned 2000 total points (awarded by participants)
ID: 41881568
This is due to an attack stated in https://sweet32.info

Configure cipher to use AES 128 and above or 3DES 168/168 instead. The weaker block cipher exist in 3DES and Blowfish e.g. support 64 bits block cipher. You can try iiscrypto tool. https://www.nartac.com/Blog/post/2013/04/19/IIS-Crypto-Explained.aspx

MS schannel control which cipher is supported which the tool above is like GUI to change it.
https://support.microsoft.com/en-us/kb/245030
0
 
LVL 66

Expert Comment

by:btan
ID: 41903934
As per advice given.
0

Featured Post

Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Data security in the cloud is very much like a security in an on-premises data center - only without costs for maintaining facilities and computer hardware.
A discussion about Penetration Testing and the Tools used to help achieve this important task.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question