IIS Server Security - How require 128-bit encryption, but not SSL?

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > June 2005 > How require 128-bit encryption, but not SSL?





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author How require 128-bit encryption, but not SSL?
Jason Finken

2005-06-29, 5:53 pm

Windows 2000 Server w/ SP4
IIS 5.0

I know how to, using Internet Services Manager, require SSL and require
128-bit encryption for a particular web site, directory, or file, but that's
not exactly what I want to do.

The require 128-bit option is only available after you also enable require
SSL. I don't necessarily want to require SSL. I just want to require
128-bit encryption for any time a client may happen to be using SSL.

Is there some way to, globally for an entire IIS server, prevent the server
from allowing encryption levels less than 128-bit, without also requiring
SSL? Is there a registry or metabase value that could be set?

Thanks in advance.

Jason
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com