Solved: Re: Disable TLS V1.0 in CUPS Server

Nikhil.ranjan · ‎09-26-2017

Hello All,

There is a vulnerabilty reported by our team about the Poddle attack in CUPS server 11.0. The vulnerabilty can be mitigated via disabling the TLS v1.0 and SSL3 protocol.

Can this be done in the CUPS 11.0. I can see this being possible in the version 12.0 release but cannot find in the version 11.0.

Also can there be any impact in the current infra if we disable the TLS v1.0.

Please Help!!

Manish Gogna · ‎09-27-2017

CUCM and IM&P are both affected in the same way by this limitation.

Manish

View solution in original post

Manish Gogna · ‎09-27-2017

Hi Nikhil,

It is not possible to disable TLS 1.0 on IM&P 11.0. It 'may' however be possible with 11.5 as per the following

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux01473/?referring_site=bugquickviewredir

Manish

- Do rate useful posts -

Nikhil.ranjan · ‎09-27-2017

Thanks for the response.

This bug relates to the CUCM. Is it also the case for the CUPS and Unity.

Manish Gogna · ‎09-27-2017

CUCM and IM&P are both affected in the same way by this limitation.

Manish

Nikhil.ranjan · ‎09-27-2017

Thanks Manish for the response.

I have opened a TAC case for this and they have responded with same. It has been fixed in 11.5 and 12.0

Manish Gogna · ‎09-28-2017

Thanks for the update Nikhil. Do remember to mark such posts as answered so that others can find the solution easily when searching on forums.

Manish