[THIN] Re: Web Interface / Secure Gateway / Beast Vulnerability / RC4 & RC2 Ciphers

  • From: Webster <webster@xxxxxxxxxxxxxxx>
  • To: "thin@xxxxxxxxxxxxx" <thin@xxxxxxxxxxxxx>
  • Date: Tue, 24 Sep 2013 18:45:40 +0000

I would update to Web Interface 5.4.2 and CSG 3.3.1.

Yes, you can update CSG to 3.3.1 on top of your existing version.  I would make 
a backup of your WI and CSG folders before updating to save any config files 
like web interface.conf.


From: thin-bounce@xxxxxxxxxxxxx [thin-bounce@xxxxxxxxxxxxx] on behalf of 
Stephen Rogers [Stephen.Rogers@xxxxxxxxxxxxxxxx]
Sent: Tuesday, September 24, 2013 10:38 AM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Web Interface / Secure Gateway / Beast Vulnerability / RC4 & 
RC2 Ciphers


Has anyone got any experience with the above ?

I ran the report from SSL Labs and I am being asked to disable all RC4 & RC2 
ciphers, disable SSL 2.0 in IIS and enable strong ciphers

I don’t want to break our Citrix Web interface and just wondered if anyone had 
attempted any of the above in order to mitigate against the BEAST vulnerability.

We run Citrix Xen App 6.5 2008 R2

Web interface 5.4.0 & Secure Gateway 3.2.0

The first thing I will do is upgrade to CSG 3.3 and I believe there is also a 
hotfix 3.3.1 which may address some of the vulnerabilities.

I think I can just upgrade my existing CSG by running the 3.3 install ??

Any help or information appreciated regarding the above and possible ways 
around this problem.

Thanks in advance,


Other related posts: