Teknogeek ®

!Stuff!

Disable Weak Ciphers —

Disable Weak Ciphers:

Windows 2008rc2:

In order to keep transmissions secure it is recommended to disable the following Protocols. We start in Regedit and add an entry for each protocol we want to disable.

MS Support: https://support.microsoft.com/en-us/kb/245030

Start > Run[Search] > Regedit.exe

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Security\Providers\SCHANNEL\Protocols
  • TLS 1.0 <— Disable
    • Client
      • Dword > Enabled > 0
    • Server
      • Dword > Enabled > 0
  • TLS 1.1 <—- Disable
    • Client
      • Dword > Enabled > 0
    • Server
      • Dword > Enabled > 0
  • RC4 128/128
  • TLS 1.2 <— Current Standards (Generally)
    • Client
      • Dword > Enabled > 0
    • Server
      • Dword > Enabled > 0

Ubuntu 14.04:


Categorised as: Server Administration

Comments are disabled on this post


Comments are closed.