TLS Version 1.0 Protocol Detection
Info Nessus Plugin ID 104743
SynopsisThe remote service encrypts traffic using an older version of TLS.
DescriptionThe remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a number of cryptographic design flaws. Modern implementations of TLS 1.0 mitigate these problems, but newer versions of TLS like 1.1 and 1.2 are designed against these flaws and should be used whenever possible.
PCI DSS v3.1 requires that TLS 1.0 be disabled entirely by June 2018, except for point-of-sale terminals and their termination points.
SolutionEnable support for TLS 1.1 and 1.2, and disable support for TLS 1.0.