Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 1 subscriber
  • Views 7963 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

https proxy only delivers tls1.1, no tls1.2

AmigoHD
It's me again with still the same problem.
I am using the latest sophos free license version with https filtering enabled with a built https proxy ca cert within the utm.
i can surf all https sites perfectly but something is strange:



the https web proxy does still not offer tls1.2, tls1.1 is maximum.
this is problematic in chrome, as it's telling that old encryption is used.
the ca cert automaticaly built by the utm does use sha1 and only 2048 bit keys.

is there a way:
1. to get a proper 4096 bit web proxy ca cert with at least sha2?
2. to use tls1.2 and more efficient cipher suites instead of tls1.1?


This thread was automatically locked due to age.
Parents
  • 0
    Current software version...: 9.309003
    Hardware type..............: Software Appliance
    Installation image.........: 9.206-35.1
    Installation type..........: asg
    Installed pattern version..: 77268
    Downloaded pattern version.: 77268
    Up2Dates applied...........: 13 (see below)
                                 sys-9.206-9.207-35.19.2.tgz (Nov  7 13:56)
                                 sys-9.207-9.208-19.8.5.tgz (Nov  7 13:56)
                                 sys-9.208-9.209-8.8.1.tgz (Nov  7 13:57)
                                 sys-9.209-9.300-8.5.1.tgz (Nov 18 13:40)
                                 sys-9.300-9.301-5.2.3.tgz (Nov 18 14:00)
                                 sys-9.301-9.302-2.2.1.tgz (Nov 26 17:29)
                                 sys-9.302-9.303-2.2.1.tgz (Dec  4 11:30)
                                 sys-9.303-9.304-2.9.2.tgz (Dec 11 21:45)
                                 sys-9.304-9.305-9.4.1.tgz (Dec 17 18:24)
                                 sys-9.305-9.306-4.6.1.tgz (Jan 19 10:15)
                                 sys-9.306-9.307-6.6.1.tgz (Feb  2 13:07)
                                 sys-9.307-9.308-6.16.1.tgz (Feb 23 23:03)
                                 sys-9.308-9.309-16.3.1.tgz (Mar 11 17:49)
    Up2Dates available.........: 0
    Factory resets.............: 0
    Timewarps detected.........: 0
Reply
  • 0
    Current software version...: 9.309003
    Hardware type..............: Software Appliance
    Installation image.........: 9.206-35.1
    Installation type..........: asg
    Installed pattern version..: 77268
    Downloaded pattern version.: 77268
    Up2Dates applied...........: 13 (see below)
                                 sys-9.206-9.207-35.19.2.tgz (Nov  7 13:56)
                                 sys-9.207-9.208-19.8.5.tgz (Nov  7 13:56)
                                 sys-9.208-9.209-8.8.1.tgz (Nov  7 13:57)
                                 sys-9.209-9.300-8.5.1.tgz (Nov 18 13:40)
                                 sys-9.300-9.301-5.2.3.tgz (Nov 18 14:00)
                                 sys-9.301-9.302-2.2.1.tgz (Nov 26 17:29)
                                 sys-9.302-9.303-2.2.1.tgz (Dec  4 11:30)
                                 sys-9.303-9.304-2.9.2.tgz (Dec 11 21:45)
                                 sys-9.304-9.305-9.4.1.tgz (Dec 17 18:24)
                                 sys-9.305-9.306-4.6.1.tgz (Jan 19 10:15)
                                 sys-9.306-9.307-6.6.1.tgz (Feb  2 13:07)
                                 sys-9.307-9.308-6.16.1.tgz (Feb 23 23:03)
                                 sys-9.308-9.309-16.3.1.tgz (Mar 11 17:49)
    Up2Dates available.........: 0
    Factory resets.............: 0
    Timewarps detected.........: 0
Children
No Data
Unfiltered HTML