December 2008 Archive on Sakya's Blog

Enforcing SSL 3.0 and removing weak encryption vulnerability over SSL ( IIS 6.0 and ISA )

Dec 11, 2008

Running a Custom Penetration test  on IIS 6.0 server having SSL enabled may show vulnerability reports as a weak encryption on IIS . ISA server 2000 acts as  proxy in front of the IIS server and also has certificate installed on it. The following...

7 comments