Forum Discussion

Cirrostratus

Jan 13, 2015

Insecure Handshakes Accepted

looking at some clientssl profile statistics (tmsh show ltm profile client-ssl ) I see Insecure Handshakes Accepted 8 cannot find reference to that. Anyone can help here? Thanks Alex

Cirrocumulus

Jan 13, 2015

It is most likely will reference what your Client SSL cipher is and, hence, what cipher suites are accepted. I'm not sure I know exactly what insecure means but possibly SSLv2 (or even SSLv3) or less than 128bit ciphers?

If you're using the default cipher then you can cross reference your TMOS version with the default cipher suite here: SSL ciphers used in the default SSL profiles (11.x)

See if this helps,

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Insecure Handshakes Accepted

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

[ASM] - How to disable the SQL injection attack signatures

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

TCP Profile with Verified Accept enabled and three-way TCP handshake

AI Security : Prompt Injection and Insecure Output Handling.

Mitigating OWASP Web Application Risk: Insecure Design using F5 XC platform

Mitigating OWASP Web Application Insecure Design using F5 BIG-IP Advanced WAF

Lightboard Lessons: OWASP Top 10 - Insecure Deserialization

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS