IIS Crypto 3.1 Released

IIS Crypto 3.1 has been released! This version is a minor update to fix a couple of issues. We are working on a larger update that will include a bunch of new features. Download the latest here.

8 thoughts on “IIS Crypto 3.1 Released”

sircompo says:

January 14, 2020 at 1:55 am

It’s great that this is being maintained, but should best practices still include TLS 1.0/1.1 and 3DES?

LikeLike
Tickett says:

January 16, 2020 at 12:26 am

Care to elaborate on the larger update? I think best practice is now to disable TLS 1.0- will you be updating this? Thanks

LikeLiked by 2 people
1. Tickett says:
  
  January 16, 2020 at 12:29 am
  
  In fact- double checking, TLS 1.1 should be disabled as of the end of this month?
  
  LikeLike
Nartac Software says:

January 17, 2020 at 4:17 pm

Hi, we would love to disable TLS 1.0 and 1.1 in the Best Practices template and will do so in the future. Unfortunately, at the moment, there are still a lot of clients that do not support TLS 1.2. In the mean time we recommend using the PCI 3.2 template as it will disable TLS 1.0 and 1.1.

LikeLike
1. sircompo says:
  
  January 18, 2020 at 1:45 am
  
  Any thoughts on 3DES? Same rationale as TLS1.0?
  
  LikeLike
  1. Nartac Software says:
    
    January 18, 2020 at 10:10 am
    
    All 3DES cipher suites were removed in the Best Practices template when 3.0 was released.
    
    LikeLike
rpressergmail says:

January 24, 2020 at 10:57 am

Do you maintain the chocolatey package? It is still based on 3.0

LikeLike
1. Nartac Software says:
  
  January 28, 2020 at 9:01 am
  
  Hi. No we don’t have anything to do with it.
  
  LikeLike

Comments are closed.