Vulnerability in EPiServer.Forms
Has anyone had any experience of using TLS 1.2 with CMS 6 R2?
The site is .NET 2.0 but I believe this is possible based on this post https://stackoverflow.com/questions/41863129/how-to-enable-tls-1-2-for-api-call-in-asp-net-2-0-application
Has anyone else done this and did it work or were there any pitfalls?
Thanks in advance,
I used this in global asax in application start (but for newer .NET version though)
System.Net.ServicePointManager.SecurityProtocol = SecurityProtocolTypeExtensions.Tls12;You will probably need .NET 4.5 at least I guess.
System.Net.ServicePointManager.SecurityProtocol = SecurityProtocolTypeExtensions.Tls12;
I would recommend to go with `|=`
ServicePointManager.SecurityProtocol |= SecurityProtocolType.Tls12;
I prefer setting it on the server by changing registry keys. If you for example run dotnet stuff where you don't have access to the source code such as ImageVault4 those will be covered as well.