Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
0
Helpful
1
Replies

Security impact of disabling SSL closure alerts on content switch?

Go to solution
ravi.malghan
Level 1
Level 1

‎07-05-2006 05:27 AM - edited ‎03-09-2019 03:29 PM

Hi: I am some troubleshooting application issues at the SSL layer. Based on some known IE bugs and Cisco workarounds for the Content Switch with SSL accelerator, we are planning to disable the

functionality where the content switch does not send SSL Closure alerts.

Wondering if anyone out there have any thoughts on if this (disabling SSL Closure Alerts at server) will have any impacts and/or if there are any security vulnerabilities?

Thanks

Ravi

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ivillegas
Level 6
Level 6

‎07-11-2006 06:22 AM

For the CSM = "close-protocol none" tells the SSL module not

to send the SSL close-notify alert while closing the connection.

One of the ramifications of this could be that client IE browser might

not negotiate the resumed SSL session for the subsequent ssl

conenction..

This does not harm the functionality, might result in degraded

performance since SSL module will have to establish more new sessions

instead of resumed session.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
ivillegas
Level 6
Level 6

‎07-11-2006 06:22 AM

For the CSM = "close-protocol none" tells the SSL module not

to send the SSL close-notify alert while closing the connection.

One of the ramifications of this could be that client IE browser might

not negotiate the resumed SSL session for the subsequent ssl

conenction..

This does not harm the functionality, might result in degraded

performance since SSL module will have to establish more new sessions

instead of resumed session.

0 Helpful
Customers Also Viewed These Support Documents