What Ciphers should I remove in IIS
Not sure what is the recommanded ciphers to removed from 2008 R2.
~ weswes chew
April 30th, 2012 6:14pm
Have a look at this tool:
https://www.nartac.com/Products/IISCrypto/Default.aspx and this KB document:
http://support.microsoft.com/kb/245030
In general, you should not use any ciphers that have a lower bit length than 128bit and you should be using SSLv3 or TLS 1.0/1.1 only (disable SSLv2).
Cheers
JJJason Jones |
Forefront MVP | Silversands Ltd | My Blogs:
http://blog.msedge.org.uk and
http://blog.msfirewall.org.uk
May 1st, 2012 11:42am
This may help too:
http://blog.msfirewall.org.uk/2008/10/hardening-ssl-cipher-strength-and-ssl.html
Cheers
JJJason Jones |
Forefront MVP | Silversands Ltd | My Blogs:
http://blog.msedge.org.uk and
http://blog.msfirewall.org.uk
Free Windows Admin Tool Kit Click here and download it now
May 1st, 2012 11:43am
Thanks JJwes chew
May 1st, 2012 1:08pm