Solved: ssl version 2 and 3 protocol detection

sbdladla1 · ‎05-29-2015

I am struggling to resolve an issue with SSL vulnerability vetion 2 and 3, can anyone assist ?

Karsten Iwen · ‎05-29-2015

Which device are you talking about? If it's the ASA up to v9.2, use "ssl server-version tlsv1-only".

Andres Villarroel · ‎05-29-2015

I'm assuming that POODLE vulnerability is what you are maybe trying to fix. If not, the following document can also give you an idea about SSLv2 and v3.

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/118780-technote-asa-00.pdf

View solution in original post

Andres Villarroel · ‎06-01-2015

Please, mark the post as correct answer if it helped you.

Thanks.

View solution in original post

Karsten Iwen · ‎05-29-2015

Which device are you talking about? If it's the ASA up to v9.2, use "ssl server-version tlsv1-only".

sbdladla1 · ‎05-29-2015

I am using ASA 8.6(1)2

Andres Villarroel · ‎05-29-2015

Hello sbdladla1,

I'm assuming that POODLE vulnerability is what you are maybe trying to fix. If not, the following document can also give you an idea about SSLv2 and v3.

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/118780-technote-asa-00.pdf

sbdladla1 · ‎06-01-2015

thanks that really help solve the problem

Andres Villarroel · ‎06-01-2015

Please, mark the post as correct answer if it helped you.

Thanks.