cancel
Showing results for 
Search instead for 
Did you mean: 

Disabling RC4 encryption and enabling TLS for web access Zone director

tamilselvam_p
New Contributor
Hi Experts ,

During security audit it is reported that ZD is using RC4, CBC. How to disable them and enable TLS 1.2 and CTR encryption suites. the version is 9.5.2.0
3 REPLIES 3

john_d
Valued Contributor II
You can do slightly better by upgrading your ZoneDirector to a more recent firmware. On 9.10, I'm seeing it connecting with TLS 1.2 and AES-128-GCM. Still considered obsolete these days, but way better than RC4-CBC and probably will pass your audits.

tamilselvam_p
New Contributor
Thanks Mr.John , The telnet server in this ZD is using version less than Dropbear SSH 2013.59. How Can I upgrade the same?

john_d
Valued Contributor II
Yep. On 9.10:

debug1: Remote protocol version 2.0, remote software version dropbear_2014.63