Forum Discussion
pgermain_71805
Apr 04, 2011Nimbostratus
iRule to Disable SSL Negotiation
Hello
I am running 9.4.8 and just applied HF4 in order to use the standard iRule to disable SSL session renegotiation.
when CLIENTSSL_HANDSHAKE {
SSL::renegotiate disable
}
Even after this has been applied to a virtual server, a Nessus security scan is able to renegotiate a session with a different cipher. I have looked at captures of this and tend to agree.
Is there anything else necessary to get this working?
Many Thanks,
Paul
- Paul_AurichEmployeePaul,
- Michael_YatesNimbostratusI know you can restrict your accepted Ciphers in the SSL Profile in v9.4.x.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects