PC Pro Podcast 109

Our old friend Google has caused no end of controversy in the past week, wasting people’s time with Pac-Man nonsense and then playing around with its web analytics tool. The team separates the hype from the hypocrisy, and still finds time to praise the new BBC iPlayer beta. Plus, we rail against authority: is the OFT right to take a swipe at behavioural advertising? Should we mourn Becta’s passing? And are the Liberals and Conservatives being two-faced by letting the Digital Bill survive? And finally, Jon Bray attempts to persuade a reluctant audience that the Cowon J3 MP3 player is worthy of being Hot Hardware of the Week.

PC Pro Podcast 108

It’s the special Flying Dog podcast this week. Less importantly, we also discuss Facebook’s issues of unprivacy creep; Amazon’s Kindle app for Android; the fact that not much is happening with Acer and Chrome netbooks; drag Hotmail out of Gmail’s shadow and dust it off; and assess Windows 7 multi-touch in the context of Samsung’s U250 all-in-one PC. And did we mention the flying dog?

Setting up Windows Server 2008 to use only SSL 3.0 and TLS 1.0 and disable SSL 2.0

As part of a recent penetration test it was identified that our server was
allowing SSL 2.0 which they identified as being listed as insecure. We were
required to upgrade it to SSL 3.0 or TLS 1.0 and disable SSL 2.0, and you would
think that Microsoft would make this easy, however, it took several days to find
out how to do this, as all of the other articles out there were very confusing –
so here is a step-by-step guide.

This guide uses the Windows Registry, make sure you back up the registry. I
have only performed this on Windows Server 2008 Standard Edition, Windows Server
2008 Partner Edition and Windows Server 2008 Enterprise Edition (all 64-bit). I
accept no responsibility if this goes wrong, however, from experience there are
no possible adverse effects even if you stop half way through making the

Open Regedit

Browse to



> CurrentControlSet

> Control

> SecurityProviders

> Schannel

> Protocols

> SSL 2.0


You will find two folders in this folder called Client and

Click on the Client sub-folder
You will see one item DisabledByDefault REG_DWORD with a Value of 1

Create a new DWORD (32-bit) Value

Name it Enabled and set the value to 0
(This is the default value anyway)

Click on the Server sub-folder

Create a new DWORD (32-bit) Value

Name it Enabled and set the value to 0
(This is the default value anyway)

Right-click on the Protocols folder, and choose New