Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

SSL Issue

Posted on 2016-11-09
2
Medium Priority
?
21 Views
Last Modified: 2016-11-28
I have this security issue on Windows 2008, do you know how to resolve it?

SSL 63-bit Block Size Ciper Suite Supported


SWEET32

Eric
0
Comment
Question by:Eric Donaldson
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points (awarded by participants)
ID: 41881568
This is due to an attack stated in https://sweet32.info

Configure cipher to use AES 128 and above or 3DES 168/168 instead. The weaker block cipher exist in 3DES and Blowfish e.g. support 64 bits block cipher. You can try iiscrypto tool. https://www.nartac.com/Blog/post/2013/04/19/IIS-Crypto-Explained.aspx

MS schannel control which cipher is supported which the tool above is like GUI to change it.
https://support.microsoft.com/en-us/kb/245030
0
 
LVL 65

Expert Comment

by:btan
ID: 41903934
As per advice given.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hey fellow admins! This time, I have a little fairy tale for you. As many tales do, it starts boring and then gets pretty gory. I hope you like it. TL;DR: It is about an important security matter, you should read it if you run or administer Windows …
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question