It's been brought to our attention that the HTTPS server on the cc3235SF seems to be vulnerable to CVE-2009-3555 allowing the possibility, if slim, for a MITM attack. We would like to be RFC 5746 compliant. I have checked the NWP Guide but did not see anything about disabling legacy renegotiation. I would like to know if it is possible to do this?
Thanks.