Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS) protocols provide integrity, confidentiality and authenticity services to other protocols that lack these features. SSL/TLS protocols use ciphers such as AES, DES, 3DES and RC4 to encrypt the content of the higher layer protocols. However, RC4 is considered as practically vulnerable and RC4 is recommended to be disabled on Server.
How to detect Vulnerability?
Download and use testssl.sh
.testssl.sh –rc4 <ip-address>
How to fix Vulnerable Systems?
- Navigate to following path in regedit.
2. Create following RC4 sub keys if they do not exists already.
3. Create REG_DWORD called Enabled and set as 0 value for all the 3 RC4 folders.