Disable Weak Cipher SSL key
Regarding the issue weak SSL cipher support in the KB http://support.microsoft.com/kb/245030, the problem are
1.I can not find some registry such as SCHANNEL\Ciphers\RC2 56/128 and SCHANNEL\Ciphers\RC4 64/128 at thatserver. Do I need to create by myself ?
2.Even if I disabled Ciphers\DES 56/56, however, from the THCSSLCheck toolis still show like this
EXP1024-DES-CBC-SHA
56
supported
EDH-RSA-DES-CBC-SHA
56
supported
DES-CBC-SHA
56
supported
DES-CBC-SHA
56
supported
etc.....
How to address this issue?
December 3rd, 2009 2:59pm
Yes, you need to create the registry keys. What operating system do you use? What application are you trying to configure (is it IIS)?Best regardsMartin Rublik
Free Windows Admin Tool Kit Click here and download it now
December 7th, 2009 11:36am
Hi, In the KB 245030, there are "Example Registry Files", you may modify this file and import on your servers. Thanks. This posting is provided "AS IS" with no warranties, and confers no rights.
December 8th, 2009 12:48pm