Home » Kerio User Forums » Kerio Control » Why is TLS 1.0 still available?
  •  
UnifiedTechs-Brian

Messages: 155
Karma: 16
Send a private message to this user
The End of Life for the use of TLS 1.0 to be PCI compliant ran out in June, that means if your Firewall supports TLS 1.0 (Kerio Control, cough, cough) it is no longer possible to be PCI compliant.

Does GFI have a timeline to get this fixed?

[Updated on: Fri, 28 September 2018 19:25]


- Brian
Kerio Preferred Partner, Reseller & Hosting Provider
Unified Technology Solutions
  •  
billybob

Messages: 15
Karma: 0
Send a private message to this user
Probably the workaround would work till they fix it hopefully?

/opt/kerio/winroute/tinydbclient "update ssl set forcetlsv1_1=1"
/etc/boxinit.d/60winroute restart
  •  
ameliaharry654

Messages: 1
Karma: -1
Send a private message to this user
Thanks for sharing
  •  
lessore

Messages: 38
Karma: 10
Send a private message to this user
Hello guys,

iam not sure, but after upgrading kerio control ist this value still active ? Or do i have do manually update the setting every upgrade ?
  •  
UnifiedTechs-Brian

Messages: 155
Karma: 16
Send a private message to this user
My understanding, from when the work around was first shown to me a while ago, is it must be reapplied after every update. Don't believe that has changed because the file you edit is rewritten every update.

- Brian
Kerio Preferred Partner, Reseller & Hosting Provider
Unified Technology Solutions
  •  
elmaasheley147

Messages: 1
Karma: 0
Send a private message to this user
  •  
Tazho

Messages: 16
Karma: -2
Send a private message to this user
Morning,
Are there any workarounds for windows server installs. I've seen some options in the mailserver.cfg file :-
<variable name="ServerTlsProtocols"></variable>
<variable name="ServerTlsCiphers"></variable>
<variable name="ClientTlsProtocols"></variable>
<variable name="ClientTlsCiphers"></variable>

but no idea what would go in them.
  •  
Tazho

Messages: 16
Karma: -2
Send a private message to this user
Please ignore, found the options in another thread.
  •  
UnifiedTechs-Brian

Messages: 155
Karma: 16
Send a private message to this user
Kerio Control can not be run on Windows, you are probably looking for Kerio Connect.

- Brian
Kerio Preferred Partner, Reseller & Hosting Provider
Unified Technology Solutions
Previous Topic: Kerio VPN host IP in browsers
Next Topic: upgrade 9.2.8 - problem tunnel vpn
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Tue Dec 11 03:57:22 CET 2018

Total time taken to generate the page: 0.74205 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.