You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

After the recent SSL vulnerabilities, I locked down the SSL configuration of our web servers, so that only TLS 1.0 and better are offered.

However, our Cisco ASA5505 box also runs HTTPS, and it's defaults are to offer SSLv3 and TLS 1.0.

Easy enough to fix that:

 

ssl server-version tlsv1-only
ssl client-version tlsv1-only
  • No labels