For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Parveez_70209's avatar
Parveez_70209
Icon for Nimbostratus rankNimbostratus
Mar 03, 2014

TLS Protocol Session Renegotiation Security Vulnerability Prevention

Hi Team,   How to prevent TLS Protocol Session Renegotiation Security Vulnerability Issue ? We have LTM running on version 10x.   Thanks and Regards Parveez  
Parveez_70209's avatar
Parveez_70209
Icon for Nimbostratus rankNimbostratus
Mar 03, 2014

Our Image is : BIG-IP 10.2.4 Build 817.0 Hotfix HF7

 

Cory_50405's avatar
Cory_50405
Icon for Noctilucent rankNoctilucent
Mar 03, 2014
In the server SSL profile configuration, just change 'Secure Renegotiation' to either 'require' or 'require strict'.