HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 47 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Web Applicationsarrow vulnerability :SSL Medium Strength Cipher Suites Supported
EH-Net
May 21, 2013, 06:49:37 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: vulnerability :SSL Medium Strength Cipher Suites Supported  (Read 4012 times)
0 Members and 1 Guest are viewing this topic.
Hack_80
Jr. Member
**
Offline Offline

Posts: 86


Black buck


View Profile
« on: May 29, 2012, 02:09:46 PM »
In my recent scan of Nessus i found most of the system reported with "SSL Medium Strength Cipher Suites Supported". I tried the solutions mentioned in "http://blogs.iis.net/sakyad/archive/2008/12/11/enforcing-ssl-3-0-and-removing-weak-encryption-vulnerability-over-ssl-iis-6-0-and-isa.aspx" but some of the servers are still reported for vulnerability.
Kindly suggest the way out for resolving the same in more than 1000+ server remotely.
Logged
Data_Raid
Full Member
***
Offline Offline

Posts: 165



View Profile
« Reply #1 on: May 29, 2012, 03:34:08 PM »
What webservers are running on the other hosts that are reported as vulnerable, are the results for webservers or other devices?
Are all the webservers running IIS?
Are you saying that after following the suggestions on the website above, the servers are still being reported as vulnerable?
What details are reported for the vulnerability in Nessus, is the following message the same: http://www.nessus.org/plugins/index.php?view=single&id=42873 ?
Logged
All men by nature desire knowledge.

Aristotle
Hack_80
Jr. Member
**
Offline Offline

Posts: 86


Black buck


View Profile
« Reply #2 on: May 30, 2012, 12:17:15 AM »
You got it right Data_Raid....reported vulnerability are on IIS servers.
with the same Nessus Plugins ID.
Logged
Data_Raid
Full Member
***
Offline Offline

Posts: 165



View Profile
« Reply #3 on: May 30, 2012, 04:49:00 AM »
You should have a list of ciphers reported as having a key length of 56 bits or 112 bits or less from the Nessus scan, and you could focus on addressing just those ciphers. The following Microsoft KB article describes how to disable the various weak ciphers: http://support.microsoft.com/kb/245030
There are many other references to disabling weak cipher keys on IIS 6, for example: http://www.waynezim.com/2011/03/how-to-disable-weak-ssl-protocols-and-ciphers-in-iis/ which also describes using a tool called SSLScan to test the ciphers easily.

HTH
Logged
All men by nature desire knowledge.

Aristotle
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.081 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.