topic Re: SSL security issue at router in Network Security

SSL security issue at router

Leftz — Mon, 06 Jun 2022 14:03:14 GMT

Hi We have a router and do not know why we started to receive security warning. Below is the info we received. Now it has ip https enable and http disabled. If we disable the https, it should resolve the issue? Any other solutions? Thanks

SSL Version 2 and 3 Protocol Detection

The remote service encrypts traffic using a protocol with known weaknesses.

The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including

Re: SSL security issue at router

Rob Ingram — Mon, 06 Jun 2022 14:08:04 GMT

@Leftz yes if you disable https service it should not respond. Run "no ip http secure-server"

Re: SSL security issue at router

Leftz — Mon, 06 Jun 2022 14:21:56 GMT

Thanks Rob for your reply. actually I would like to know why it has not been detected before? and ssl and tls are used in a lot devices. why the other device do not send the warning?

Re: SSL security issue at router

Rob Ingram — Mon, 06 Jun 2022 14:32:47 GMT

@Leftz there could be several reasons, the other devices could be configured with ACL to block https requests, https server could be disabled, or the other devices could be configured with a stronger ciphersuite etc.

As to why it hasn't been detected before we cannot answer, perhaps it wasn't scanned correctly?

Re: SSL security issue at router

Leftz — Mon, 06 Jun 2022 18:07:07 GMT

Thank you for your explanation! It works

Can we say https is related with ssl, if this is a case, after removing https there, what is its replacement? TLS?