We have 2 vulnerability on our dmz servers.
first one is about tls1.0 . I know that we can resolve this issue with “enable encryption” on bes admin.
our tls1.0 reg key is “disabled=1” . But our securtiy team didn’t accept this.
second one is aboute renegotiation. as I talked with case there is no customization about blocking renegotiation.
do you have any advice about both vulnerabilities ? did you faced with renegotiation vulnerabilities?