7.9 Ensure RC2 Cipher Suites is disabled - RC2 40/128

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

RC2 is a weak symmetric-key block cipher. It is recommended that it be disabled.

By disabling RC2, there is a better chance of maintaining data confidentiality and integrity.

Solution

To disable RC2 40/128, ensure the following key is absent. If the key is present, ensure it is set to 0.
HKLM\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC2 40/128\Enabled

See Also

https://workbench.cisecurity.org/files/166