Objective

• Resolve this finding

Nessus Output

Description

Synopsis
The remote service supports the use of weak SSL ciphers.

Description
The remote host supports the use of SSL ciphers that offer weak encryption.

Note: This is considerably easier to exploit if the attacker is on the same physical network.

Solution
Reconfigure the affected application, if possible to avoid the use of weak ciphers.

Solution

• Configure the ‘SSL Cipher Suite Order’ Group Policy Setting
• Ensure DES Cipher Suites is disabled

References

• SSL/TLS Configuration Guide