Solved

SSL Issue

Posted on 2016-11-09
2
14 Views
Last Modified: 2016-11-28
I have this security issue on Windows 2008, do you know how to resolve it?

SSL 63-bit Block Size Ciper Suite Supported


SWEET32

Eric
0
Comment
Question by:Eric Donaldson
  • 2
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41881568
This is due to an attack stated in https://sweet32.info

Configure cipher to use AES 128 and above or 3DES 168/168 instead. The weaker block cipher exist in 3DES and Blowfish e.g. support 64 bits block cipher. You can try iiscrypto tool. https://www.nartac.com/Blog/post/2013/04/19/IIS-Crypto-Explained.aspx

MS schannel control which cipher is supported which the tool above is like GUI to change it.
https://support.microsoft.com/en-us/kb/245030
0
 
LVL 63

Expert Comment

by:btan
ID: 41903934
As per advice given.
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Extra security implementation for 2017 9 70
Connecting a New Subnet to Network 4 45
Home wireless security 10 63
Well known ports and optimal ports scanning range 12 72
The related questions "How do I recover the passwords for my Q-See DVR" and "How can I reset my Q-See DVR to eliminate a password" are seen several times a week.  Here we discuss the grim reality of the situation.
Ransomware continues to grow in reach and sophistication, putting data everywhere at risk. Learn how to avoid being caught in its sinister clutches with these 11 key tips.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question