The DirTeam.com/ActiveDir.org Weblogs no longer offer SSL v2.0

CertificateAs you might be aware, the DirTeam.com/ActiveDir.org Weblogs offers the ability to encrypt all http traffic to and from the website using Secure Sockets Layer (SSL) since December 2010. To enable this, you only need to direct your traffic to https://blogs.dirteam.com instead of https://dirteam.com. The functionality also includes feeds and (when you’re a blogger with us) the ability to securely post blogposts, comments and articles.

In its (default) configuration, the DirTeam.com/ActiveDir.org Weblogs offered both SSL v2.0, SSL v3.0, TLS v1.0, TLS v1.1 and TLS v1.2. Per last Saturday, the webserver has SSL v2.0 disabled, due to its inherited weaknesses in and its attack surface that may be used by the SSL BEAST ("Browser Exploit Against SSL/TLS") attack, allowing man in the middle (MITM) attacks.

We used IIS Crypto to make the necessary changes and checked the health of our SSL implementation here.

When you use https://dirteam.com, you can feel much safer.

Sander Berkouwer, CTO of the DirTeam.com/ActiveDir.org Weblogs

Author: Sander Berkouwer

Sander Berkouwer is CTO at SCCT, a Dutch Microsoft Partner. He is the author of the Active Directory Administration Cookbook, speaker and blogger at DirTeam.com and ServerCore.net. He is awarded Microsoft MVP, Veeam Vanguard and VMware vExpert. Since 2009, Microsoft has awarded Sander with the Most Valuable Professional (MVP) award. Since 2016, Veeam has awarded Sander with the Veeam Vanguard award.

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.