Prevent iOS Receiver from using weak ciphers when connecting to NetScaler Gateway
Article ID: CTX232092
Updated On:
Description
How can Receiver for iOS be configured to not use weak ciphers that are susceptible to the Bleichenbacher attack?
Resolution
Upgrade NetScaler to one of the firmware releases listed at CTX230238 - TLS Padding Oracle Vulnerability in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway.
Update to Receiver for iOS version 7.5, which includes the latest updated ciphers from Citrix.
Configure NetScaler Gateway to use a custom cipher suite with only strong ciphers. Receiver for iOS will then be unable to use weak ciphers. Citrix Documentation - Configuring User-Defined Cipher Groups on the NetScaler Appliance.
Issue/Introduction
Prevent iOS Receiver from using weak ciphers when connecting to NetScaler Gateway
Was this article helpful?
Yes
No
Powered by
