Skip to main content

3 Messages

 • 

106 Points

Wed, Jun 10, 2015 8:40 AM

Disabling RC4 encryption and enabling TLS for web access Zone director

Hi Experts ,

During security audit it is reported that ZD is using RC4, CBC. How to disable them and enable TLS 1.2 and CTR encryption suites. the version is 9.5.2.0

Responses

Champion

 • 

556 Messages

 • 

10.5K Points

5 years ago

You can do slightly better by upgrading your ZoneDirector to a more recent firmware. On 9.10, I'm seeing it connecting with TLS 1.2 and AES-128-GCM. Still considered obsolete these days, but way better than RC4-CBC and probably will pass your audits.

3 Messages

 • 

106 Points

5 years ago

Thanks Mr.John , The telnet server in this ZD is using version less than Dropbear SSH 2013.59. How Can I upgrade the same?

Champion

 • 

556 Messages

 • 

10.5K Points

5 years ago

Yep. On 9.10:

debug1: Remote protocol version 2.0, remote software version dropbear_2014.63