Our security team ran an external VM scan on DMZ and had some vulnerabilities.
i have 1 question:
SSL/TLS server supports TLSv1.0 vulnerability ( 38628) does not provide much info for windows server 2008 (R2) servers.
we looked at this article . https://blog.qualys.com/ssllabs/2014/12/08/poodle-bites-tls
we are not sure if this is a legitimate vulnerability or false positive.
solution is to opnessl but we do not have it installed.
could you please let me know with some more information to see if this protocol (TLSv1.0) needs to be disabled or we can disregard.
there is 1 article i searched - https://blogs.msdn.microsoft.com/friis/2016/0725/disabling-tls-1-0-on-your-windows-2008-r2-server-just-because-you-still-have-one
above links list instructions to disable 1.0 and enable 1.1 and 1.2
i need to compile the list , can you provide any thoughts of the top link above, how should i make changes ??