RE: SSL 2.0

---

• From: wjzhang@xxxxxxxxxxxxxxxxxxxx ("WenJun Zhang[msft]")
• Date: Thu, 10 Jan 2008 07:56:27 GMT

---

No, Microsoft hasn't suggested to enable SSL 3.0 only and disable all the
other ciphers. Only SSL 2.0 is not recommended for sure. The answer of your
question is fully based on your real scenario. If your web application has
quite critical concern on the security and consider only SSL 3.0 clients
should be allowed to access the site, then I believe it's fine to disable
the other ones.

Furthermore, TLS 1.0 and SSL 3.0 are quite smiliar protocols. You may look
through the following article:

What is TLS/SSL?
http://technet2.microsoft.com/windowsserver/en/library/ed5ae700-e05e-45ef-b5
36-45795dbb99a21033.mspx?mfr=true

Hope the info will be of some help. Have a nice day. :-)

Sincerely,

WenJun Zhang

Microsoft Online Community Support

==================================================

Get notification to my posts through email? Please refer to:
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.

Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at:

http://msdn.microsoft.com/subscriptions/support/default.aspx.

==================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

.

---

• Follow-Ups:
  • RE: SSL 2.0
    • From: Smurfman

• References:
  • RE: SSL 2.0
    • From: "WenJun Zhang[msft]"
  • RE: SSL 2.0
    • From: Smurfman
  • RE: SSL 2.0
    • From: "WenJun Zhang[msft]"
  • RE: SSL 2.0
    • From: Smurfman

• Prev by Date: Re: URLScan
• Next by Date: Re: URLScan
• Previous by thread: RE: SSL 2.0
• Next by thread: RE: SSL 2.0
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: Support Code 0x80072F17 ... If I understand correctly, you use the SSL for OMA connection, as I know we ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) RE: Active Sync OMA http/1.1 500 error ... > use Basic Authentication for these three VD, disable SSL Windows ... > Microsoft CSS Online Newsgroup Support ... > This newsgroup only focuses on SBS technical issues. ... > | But by disabling it my OWA stopped to work. ... (microsoft.public.windows.server.sbs) RE: C++/CLI WinForms app + native static library with singletons = ... Copyright Microsoft Corporation. ... Microsoft Online Community Support ... professional working with you may need further investigation to reach the ... project analysis and dump analysis issues. ... (microsoft.public.dotnet.languages.vc) RE: C++/CLI WinForms app + native static library with singletons = ... Copyright Microsoft Corporation. ... Microsoft Online Community Support ... professional working with you may need further investigation to reach the ... project analysis and dump analysis issues. ... (microsoft.public.dotnet.languages.vc) Re: STL, cout, wcout, TCHAR, unicode? ... Your suggestions will be routed to Microsoft product team and hope that the ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ... project analysis and dump analysis issues. ... (microsoft.public.vc.language)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)