pgermain_71805
Apr 04, 2011Nimbostratus
iRule to Disable SSL Negotiation
Hello
I am running 9.4.8 and just applied HF4 in order to use the standard iRule to disable SSL session renegotiation.
when CLIENTSSL_HANDSHAKE {
SSL::renegotiate disable
}
Even after this has been applied to a virtual server, a Nessus security scan is able to renegotiate a session with a different cipher. I have looked at captures of this and tend to agree.
Is there anything else necessary to get this working?
Many Thanks,
Paul