4.3 Set Security TLS Version Minimum

Information

This feature sets the minimum protocol version that may be used when negotiating TLS/SSL sessions.
Setting TLS 1.0 as the minimum protocol version mitigates the risk of negotiating an insecure protocol, such as SSL 2.0.

Solution

Perform the following procedure:

* Open the mozilla.cfg file in the installation directory with a text editor

* Add the following lines to mozilla.cfg:

lockPref("security.tls.version.min", 1)

See Also

https://workbench.cisecurity.org/files/1158

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8(1)

Plugin: Unix

Control ID: 4a3bca7f593bb7cc7ae55a6c29c320117d4112a19827dd4456b100bf6a3eb4be