SSL v3 (Full Version)

All Forums >> [Threat Management Gateway (TMG) 2010] >> General



Message


teejayuu -> SSL v3 (10.Oct.2012 8:24:45 AM)

Hi,

We have a case management system running on Red Hat Linux that is published via our ISA on Windows 2K3 R2. We are aiming for PCI compliance and the tests are failing because SSL v2 is enabled and we have ciphers <128 bit. Our Systems Manager (Linux guru) has disabled it on the Red Hat box, however it is still failing because of SSL v2 and weak ciphers on the ISA.

We are in the process of migrating to TMG on W2K8 R2 this weekend. By default does the TMG have SSL v2 enabled by default? If not how do I turn it off?




spouseele -> RE: SSL v3 (10.Oct.2012 2:46:11 PM)

The short answer, check out http://support.microsoft.com/kb/937293/en-us .

The long answer, check out my article serie about "Require 128-bit Encryption for HTTPS Traffic with ISA Server 2006":
- http://blogs.isaserver.org/pouseele/2007/03/18/require-128-bit-encryption-for-https-traffic-with-isa-server-2006/
- http://blogs.isaserver.org/pouseele/2007/03/25/require-128-bit-encryption-for-https-traffic-with-isa-server-2006-part2/
- http://blogs.isaserver.org/pouseele/2007/05/19/require-128-bit-encryption-for-https-traffic-with-isa-server-2006-part3/

HTH,
Stefaan




Page: [1]