How to disable SSL 2.0 in IIS
Hosting, Internet, Server, TCP/IP, Windows 2003 No Comments »
As I am sure you are all aware Secure Sockets Layer (SSL) version 2 certificates are a risk. This protocol is known to have cryptographic weaknesses as well as other exploitable vulnerabilities.
To ensure that your Microsoft IIS Servers do not publish these you can perform the following registry tweek.
1. Click Start, click Run, type regedt32 or type regedit, and then click OK.
2. In Registry Editor, locate the following registry key: HKey_Local_Machine \ System \ CurrentControlSet \ Control \ SecurityProviders \ SCHANNEL \ Protocols \ SSL 2.0 \ Server
3. On the Edit menu, click Add Value.
4. In the Data Type list, click DWORD.
5. In the Value Name box, type Enabled, and then click OK. Note If this value is present, double-click the value to edit its current value.
6. Type 00000000 in Binary Editor to set the value of the new key equal to “0″.
7. Click OK. Restart the computer.
You can download a .reg script below that will save you a few minutes.
disable_sslv2_server.reg








Recent Comments