SSL Version 1

[netwalker1]

I have a Server - and I enabled a SSL on its website ...
I want to know the version of the SSL which is being used on this server - is it SSLv2 or SSLv3 ...

what is the easiest way to do that ?

Mohamed Farid
[green]Know Me No Pain , No Me Know Pain !!![/green]

 

[Lemon13]

http://www2.westlaw.com/CustomerSup.../WebHelp/Browser_Security_Requirements.htm#IE

 

[netwalker1]

Dear Lemon13 :

Do you mean limiting the Explorer to only SSLv3 will prevent SSLv2 website from being opened ? I don't think so !

is there anyway to check the certificate of the website or something !

Mohamed Farid
[green]Know Me No Pain , No Me Know Pain !!![/green]

 

[TechyMcSe2k]

IIS will negotiate an SSL version and cipher suite with the client - it isn't one version or another that IIS supports.

IIS supports SSL2.0, SSL3.0, PCT1.0 and TLS1.0 by default with various DES, RC2, RC4, Skipjack and Triple DES cipher suites.

You can look under HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL at the Ciphers and Protocols keys to see what is there.

If a given cipher or protocol has an ENABLED value of 0 that item will not be used. If it is not 0 it will be used, although they may be used in specific combinations i.e. not all protocols use all cipher suites.

Thanks to Dave Dietz

________________________________________
Achieving a perception of high intelligence level can only be limited by your manipulation skills of the Google algorithm!