Secure email with TLS v1.2

RDO Servers

RDO Servers

New member
Joined
Apr 3, 2015
Messages
770
Points
0
We have a customer that has a PCI compliant server cluster. We recently made a move to fully disable TLS v1 (Transport Layer Encryption, the successor to SSL) since it will no longer be considered PCI compliant as of June 2016.

After doing so, we learned 2 interesting thing.


A) Even though Windows 7 "includes" and "supports" TLS, it is disabled by default. In order to to use the most current and secure TLS in Windows 7, you have to add the following registry keys.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]
"DisabledByDefault"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]
"DisabledByDefault"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000



B) Aparently, Apple has decided to disable TLS support on the iPhone and iPads....
We have been working to find the reason we are unable to connect via a iPad or iPhone once TLS v1 is disabled. After speaking to a Apple online tech, we were told that this week, Apple pushed out an update that disabled TLS support.....


Has anyone else run into this issue?
 
ElixantTechnology

ElixantTechnology

New member
Joined
Nov 26, 2014
Messages
622
Points
0
EDIT: I read this wrong; ignore my last comment.

No, I haven't come across this issue as of yet.... Also, last I checked, TLS 1.1+ are only disabled in Internet Explorer, and should be functional everywhere else.... That leads me to the next question; why are they still using Internet Explorer?
 
RDO Servers

RDO Servers

New member
Joined
Apr 3, 2015
Messages
770
Points
0
RDO Servers
Ug, I can't stand IE and haven't used it in years!

Sorry, I should have been more specific, the issue was not with http, but with POP3. Aparently there are quite a few "new" devices that have yet fully caught up to the latest standard and will crap out if they can't fall back to TLSv1
 
ElixantTechnology

ElixantTechnology

New member
Joined
Nov 26, 2014
Messages
622
Points
0
That would explain why I have had more and more iPhone customers coming into the store with issues relating to connecting to their E-Mail accounts......
 
RDO Servers

RDO Servers

New member
Joined
Apr 3, 2015
Messages
770
Points
0
RDO Servers
Yep!

According to the Apple tech I spoke to, the recent update was to "fix" security vulnerabilities. When in fact, they actually downgraded the security on them.....

Gotta love Apple!
 
You must log in or register to reply here.
Older threads
Greejin
WTS Premium Game Domain F2PGame.com Selling
Replies
1
Views
3,978
Greejin
never-sleep
WTS Virtual Address For Google Local Verification
Replies
5
Views
6,823
etechsupport
never-sleep
Good Morning / Afternoon/ Evening / Night
Replies
7
Views
3,745
wms
never-sleep
Is This a Viable Business?
Replies
0
Views
4,832
never-sleep
Jovani
How to check server load
Replies
2
Views
2,568
Imbahost-Andy
Newer threads
Greejin
WTS PR2 Gravepedia Backlink Selling
Replies
0
Views
3,301
Greejin
sallysaleh
How much are you making from email marketing?
Replies
13
Views
4,825
mikeyman120
diliberti
How to get your first client?
2
Replies
26
Views
9,200
Allchat
Fawad Malik
How many keywords are important for single blog in SEO?
Replies
12
Views
7,394
Fawad Malik
Steve32
How to find relevant Backlinks?
Replies
6
Views
6,183
wms
Latest threads
KeywordMarketingPro
Fun backlink hack I’ve been using lately
Replies
0
Views
15
KeywordMarketingPro
Daniel@30
How can you double your hosting without doubling the cost?
Replies
0
Views
77
Daniel@30
integratedmlm
What are the key challenges businesses face when implementing MLM plans?
Replies
0
Views
95
integratedmlm
Adrenalead
Want to monetize your website?
Replies
0
Views
590
Adrenalead
AnthonyS
Introduce Myself
Replies
2
Views
789
MissSophie
Recommended threads
johnmth
Does any one have experience for centos web panel?
Replies
6
Views
2,232
johnmth
ron13315
PC Networking without cable
Replies
6
Views
3,472
MightWeb
hiteshd1
More than one way to do things?
Replies
0
Views
1,717
hiteshd1
Earnwebcom
Hello everyone!
Replies
11
Views
4,143
cyberewok
hostslim
OFFER [NL] Extremely Affordable And Reliable Reseller Hosting - Instant Setup!
Replies
4
Views
13,799
hostslim
Similar threads
HostSailor
  • Locked
How To Secure Your Dedicated Server?
Replies
7
Views
3,780
Cantech Networks Pvt. Ltd
Alicefeltch
What is the best way to make money on trading, is it secure?
Replies
7
Views
1,598
Jason Roy
cloudteh
HOT Cloudteh => Linux/Windows [20% OFF FOR LIFE] | NVMe SSD | 100% Secure | FREE Backups | 99.99% Uptime
Replies
1
Views
6,933
CyberAlchemist
cloudteh
HOT Cloudteh - [20% OFF FOR LIFE] cPanel | LiteSpeed + CloudLinux | NVMe SSD | 100% Secure 100% Uptime!
Replies
0
Views
7,022
cloudteh
Nemanja
Is a VPS more secure than a shared hosting?
2
Replies
22
Views
9,166
Nemanja

Latest postsNew threads

Referral contests

Referral link for :

Tools What's this?

Latest OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Popular tags

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • affiliate
  • affiliate marketing
  • best
  • forum
  • free
  • google
  • hello
  • how
  • marketing
  • money
  • new
  • new member
  • seo
  • social media
  • traffic
  • website
    • Top