Using SSLv3 - Enabling Strong Ciphers Server 2008

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Posted by Igor K on Server Fault See other posts from Server Fault or by Igor K
Published on 2010-08-23T17:48:54Z Indexed on 2011/06/26 16:23 UTC
Read the original article Hit count: 391

Filed under:
|
|

I've disabled SSLv2 and SSLv3 is on. However I cannot connect to a remote server which fails with

The client and server cannot communicate, because they do not possess a common algorithm

Ran an SSL check (http://www.serversniff.net/sslcheck.php) on the remote server and ours, and noticed none of the ciphers they accept we have on our server. How can this be configured? (Windows Web Server 2008)

Remote Server Accepted SSL ciphers:

DHE-RSA-AES256-SHA
AES256-SHA
EDH-RSA-DES-CBC3-SHA
DES-CBC3-SHA
DHE-RSA-AES128-SHA
AES128-SHA

Our server by default accepts:

DES-CBC3-SHA
RC4-SHA
RC4-MD5

© Server Fault or respective owner

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Related posts about windows-server-2008

Related posts about security

Categories cloud

.NET ASP.NET iphone linux python Windows mysql android sql windows-7 html c ruby-on-rails css objective-c ubuntu networking sql-server wpf asp.net-mvc ruby database Xml apache AJAX osx security regex django Performance 12.04 windows-xp mac web-development iphone-sdk vb.net Silverlight apache2 flash server perl best-practices email installation eclipse visual-studio algorithm windows-server-2008 winforms wcf firefox bash dns /Oracle