I have a webserver that is only has TLS 1.2 enabled and has TLS_RSA_WITH_RC4_128_SHA & TLS_RSA_WITH_RC4_128_MD5 at the bottom of the ciphers. SSLLABs is say the the score is capped at B because the server accepts RC4 cipher, but only with older protocols. Since only TLS 1.2 is only enabled. There is nothing I need to do, correct? Or do I still need to disable RC4?

Share This Discussion

1 Comment

  • JayDeeEss

    November 5, 2021

    You could try and remove the cypher suites with RC4.

    have a look at the free tool IIS crypto (if it’s a Windows server). It’s a good way of dealing with SSL/TLS levels, hashes and suites

    Reply

Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.