Forum Discussion
newf5learner
Dec 03, 2014Nimbostratus
basically I don't want to allwo any negotiations which are on weaker ciphers. can't I negating the ssl cipher type in the profiles? won't that work? In my profile configuration, I can change the cipher setting instead of using 'DEFAULT' i think I can negate unwanted / weaker ciphers using '!SSLv2:!SSLv3:!MD5:!EXPORT:RSA+AES:RSA+3DES:RSA+RC4:ECDHE+AES:ECDHE+3DES:ECDHE+RC4' by the above I'm disabling the use of weak ssl cipher negitiations which are shown in that list. Won't this work ?