 |
|
|
|
Next: owssvr.dll being downloaded
|
| Author |
Message |
External
Since: Jul 06, 2005
Posts: 3
|
(Msg. 1) Posted: Wed Jul 06, 2005 8:19 am
Post subject: How require 128-bit encryption, but not SSL?
Archived from groups: microsoft>public>inetserver>iis (more info?)
|
|
|
Windows 2000 Server w/ SP4
IIS 5.0
I know how to, using Internet Services Manager, require SSL and require
128-bit encryption for a particular web site, directory, or file, but that's
not exactly what I want to do.
The require 128-bit option is only available after you also enable require
SSL. I don't necessarily want to require SSL. I just want to require
128-bit encryption for any time a client may happen to be using SSL.
Is there some way to, globally for an entire IIS server, prevent the server
from allowing encryption levels less than 128-bit, without also requiring
SSL? Is there a registry or metabase value that could be set?
Thanks in advance.
Jason |
|
| Back to top |
|
 | |
External
Since: Apr 27, 2004
Posts: 131
|
(Msg. 2) Posted: Wed Jul 06, 2005 12:55 pm
Post subject: Re: How require 128-bit encryption, but not SSL? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
i don't think what you are saying makes sense, how would you encrypt without
ssl?
"Jason Finken" <JasonFinken DeleteThis @discussions.microsoft.com> wrote in message
news:F4D685F2-B371-4E84-B90D-DC1E653494D4@microsoft.com...
> Windows 2000 Server w/ SP4
> IIS 5.0
>
> I know how to, using Internet Services Manager, require SSL and require
> 128-bit encryption for a particular web site, directory, or file, but
> that's
> not exactly what I want to do.
>
> The require 128-bit option is only available after you also enable require
> SSL. I don't necessarily want to require SSL. I just want to require
> 128-bit encryption for any time a client may happen to be using SSL.
>
> Is there some way to, globally for an entire IIS server, prevent the
> server
> from allowing encryption levels less than 128-bit, without also requiring
> SSL? Is there a registry or metabase value that could be set?
>
> Thanks in advance.
>
> Jason
> |
|
| Back to top |
|
| |
External
Since: Jul 06, 2005
Posts: 3
|
(Msg. 3) Posted: Wed Jul 06, 2005 12:55 pm
Post subject: Re: How require 128-bit encryption, but not SSL? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
That's not what I'm trying to do. I just want to know how to set Windows /
IIS to only do 128-bit level encryption at times when a client might be using
SSL. I want to do that without having to require SSL on specific IIS
resources because I don't get told by the web developers what resources to
require SSL on.
If what I want to do isn't possible using a single web site listening on
both 80 and 443, maybe an alternative would be to create two web sites
pointing at the same content. One web would listen on 80. The other web
would listen on 443 and the entire site would require 128-bit SSL.
"Dave" wrote:
> i don't think what you are saying makes sense, how would you encrypt without
> ssl?
>
> "Jason Finken" <JasonFinken DeleteThis @discussions.microsoft.com> wrote in message
> news:F4D685F2-B371-4E84-B90D-DC1E653494D4@microsoft.com...
> > Windows 2000 Server w/ SP4
> > IIS 5.0
> >
> > I know how to, using Internet Services Manager, require SSL and require
> > 128-bit encryption for a particular web site, directory, or file, but
> > that's
> > not exactly what I want to do.
> >
> > The require 128-bit option is only available after you also enable require
> > SSL. I don't necessarily want to require SSL. I just want to require
> > 128-bit encryption for any time a client may happen to be using SSL.
> >
> > Is there some way to, globally for an entire IIS server, prevent the
> > server
> > from allowing encryption levels less than 128-bit, without also requiring
> > SSL? Is there a registry or metabase value that could be set?
> >
> > Thanks in advance.
> >
> > Jason
> >
>
>
> >> Stay informed about: How require 128-bit encryption, but not SSL? |
|
| Back to top |
|
| |
External
Since: Apr 27, 2004
Posts: 131
|
(Msg. 4) Posted: Wed Jul 06, 2005 1:55 pm
Post subject: Re: How require 128-bit encryption, but not SSL? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
the 'might be using ssl' is normally not a client decision. that is
normally designed into the site based on the type of data and its
sensitivity. your web developers will have to tell you because they will
have to put in the https links to the secure pages and resources.
"Jason Finken" <JasonFinken.RemoveThis@discussions.microsoft.com> wrote in message
news:D6F01CDE-52F2-4ADA-A1FA-E699FB81BF2A@microsoft.com...
> That's not what I'm trying to do. I just want to know how to set Windows
> /
> IIS to only do 128-bit level encryption at times when a client might be
> using
> SSL. I want to do that without having to require SSL on specific IIS
> resources because I don't get told by the web developers what resources to
> require SSL on.
>
> If what I want to do isn't possible using a single web site listening on
> both 80 and 443, maybe an alternative would be to create two web sites
> pointing at the same content. One web would listen on 80. The other web
> would listen on 443 and the entire site would require 128-bit SSL.
>
> "Dave" wrote:
>
>> i don't think what you are saying makes sense, how would you encrypt
>> without
>> ssl?
>>
>> "Jason Finken" <JasonFinken.RemoveThis@discussions.microsoft.com> wrote in message
>> news:F4D685F2-B371-4E84-B90D-DC1E653494D4@microsoft.com...
>> > Windows 2000 Server w/ SP4
>> > IIS 5.0
>> >
>> > I know how to, using Internet Services Manager, require SSL and require
>> > 128-bit encryption for a particular web site, directory, or file, but
>> > that's
>> > not exactly what I want to do.
>> >
>> > The require 128-bit option is only available after you also enable
>> > require
>> > SSL. I don't necessarily want to require SSL. I just want to require
>> > 128-bit encryption for any time a client may happen to be using SSL.
>> >
>> > Is there some way to, globally for an entire IIS server, prevent the
>> > server
>> > from allowing encryption levels less than 128-bit, without also
>> > requiring
>> > SSL? Is there a registry or metabase value that could be set?
>> >
>> > Thanks in advance.
>> >
>> > Jason
>> >
>>
>>
>> >> Stay informed about: How require 128-bit encryption, but not SSL? |
|
| Back to top |
|
| |
|
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
|
|
|
FAQ
Profile
Private Messages
Log in
