How to safeguard from the SWEET32

How to safeguard from the SWEET32 Issue, CVE-2016-2183

Disable RC4 and 3DES on Windows Server:

RC4

To disable RC4 on your Windows server, set the following registry keys:

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 128/128]
        "Enabled"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 40/128]
        "Enabled"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 56/128]
        "Enabled"=dword:00000000

3DES

To disable 3DES on your Windows server, set the following registry key:

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\Triple DES 168]
        "Enabled"=dword:00000000

If your Windows version is anterior to Windows Vista (i.e. XP, 2003), you will need to set the following registry key:

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\Triple DES 168/168]
        "Enabled"=dword:00000000

Article ID: 1139, Created On: 7/12/2018, Modified: 7/12/2018

Register

Knowledge Base

News

Submit a Ticket

View Tickets

Network Tools

Bandwidth Speed Test

DNS Report

Shields Up

Online Backups

Anti-SPAM Service

Article Rating

How to safeguard from the SWEET32

How to safeguard from the SWEET32 Issue, CVE-2016-2183

Disable RC4 and 3DES on Windows Server:

RC4

3DES

Feedback (0)