maile3241 Posted March 22, 2022 Share Posted March 22, 2022 Hi there, Is it possible to add ECDHE ciphers? To access the Windows Update website without ProxhttpsProxy. I read that you can update the ciphers in the registry editor, or am I wrong? I found these entries: The Windows Update website requires these ciphers: Link to comment Share on other sites More sharing options...
RainyShadow Posted March 22, 2022 Share Posted March 22, 2022 I believe this registry edit would only disable the already available ciphers. To add new ones they have to be programmed in the .DLL that does the actual work. Link to comment Share on other sites More sharing options...
maile3241 Posted March 22, 2022 Author Share Posted March 22, 2022 20 minutes ago, RainyShadow said: I believe this registry edit would only disable the already available ciphers. To add new ones they have to be programmed in the .DLL that does the actual work. OK. Unfortunately, I'm not a programmer who can do that. Would it work if we take the file from Vista? Link to comment Share on other sites More sharing options...
RainyShadow Posted March 22, 2022 Share Posted March 22, 2022 8 minutes ago, maile3241 said: Would it work if we take the file from Vista? I think this was attempted before without success. Check the begining of the few big related threads (about TLS 1.2, or the WU/MU one maybe), it was mentioned somewhere there. Link to comment Share on other sites More sharing options...
AstroSkipper Posted March 22, 2022 Share Posted March 22, 2022 (edited) 2 hours ago, RainyShadow said: I think this was attempted before without success. Have a look into this thread: It's all about TLS, SSL, ProxHTTPSProxy and a lot of observations relating to schannel.dll where Ciphers are provided. Edited March 22, 2022 by AstroSkipper correction Link to comment Share on other sites More sharing options...
AstroSkipper Posted March 22, 2022 Share Posted March 22, 2022 (edited) 4 hours ago, maile3241 said: Hi there, Is it possible to add ECDHE ciphers? To access the Windows Update website without ProxhttpsProxy. I read that you can update the ciphers in the registry editor, or am I wrong? As @RainyShadow said above these registry entries can only enable or disable ciphers which already exist in file schannel.dll. Here is a link: https://www.ssl.com/de/wie-man/Wählen-Sie-die-richtigen-Cipher-Suites-in-der-Schannel-DLL/ And replacing files is simple but in most cases it won't work at all. A lot of dll files have dependencies and need special registry entries too. Some people have already tried that. For example here: Edited March 22, 2022 by AstroSkipper correction Link to comment Share on other sites More sharing options...
maile3241 Posted March 22, 2022 Author Share Posted March 22, 2022 I have read through the post. It would certainly be possible somehow, but it will probably require a lot of work. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now