https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125288#M23108 <P>I am looking to remediate&nbsp;CVE-2016-2183 (SWEET 32) from my R80.40 Gateway Cluster and R80.40 Mgmt Server.</P><P>I understand from the following sk that Checkpoint products are not vulnerable to SWEET32</P><P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk113114" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk113114</A></P><P>&nbsp;</P><P>&nbsp;</P><P>However..if i do want to disable weak ciphers ..the above link points to following sk</P><P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk111307" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk111307</A></P><P>but this sk does not list R80.40 OS.. does this apply to R80.40 or there are any other steps involved to remove weak ciphers from R80.40</P> Thu, 29 Jul 2021 19:02:25 GMT LostBoY 2021-07-29T19:02:25Z https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125288#M23108 <P>I am looking to remediate&nbsp;CVE-2016-2183 (SWEET 32) from my R80.40 Gateway Cluster and R80.40 Mgmt Server.</P><P>I understand from the following sk that Checkpoint products are not vulnerable to SWEET32</P><P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk113114" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk113114</A></P><P>&nbsp;</P><P>&nbsp;</P><P>However..if i do want to disable weak ciphers ..the above link points to following sk</P><P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk111307" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk111307</A></P><P>but this sk does not list R80.40 OS.. does this apply to R80.40 or there are any other steps involved to remove weak ciphers from R80.40</P> Thu, 29 Jul 2021 19:02:25 GMT https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125288#M23108 LostBoY 2021-07-29T19:02:25Z https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125289#M23109 <P>Check out the cipher configuration tool found in this SK:</P> <P>&nbsp;</P> <P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk126613&amp;partition=Advanced&amp;product=Quantum#30" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk126613&amp;partition=Advanced&amp;product=Quantum#30</A></P> Thu, 29 Jul 2021 19:18:19 GMT https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125289#M23109 mcatanzaro 2021-07-29T19:18:19Z https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125315#M23113 <P>Thanks for the reply.. but how to determine which ciphers i need from cipher_util ? there are many listed is enabled&nbsp;</P> Fri, 30 Jul 2021 07:23:24 GMT https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125315#M23113 LostBoY 2021-07-30T07:23:24Z https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125336#M23118 <P>Are you trying to disable certain ciphers just for web UI?</P> Fri, 30 Jul 2021 14:05:34 GMT https://community.checkpoint.com/t5/General-Topics/Sweet32-Vulnerability-Removal-in-R80-40/m-p/125336#M23118 the_rock 2021-07-30T14:05:34Z