Guest

Preview Tool

Cisco Bug: CSCvi11805 - Prox continuously restarts when WSA upgraded with invalid ciphers in UI->SSL config

Last Modified

Feb 06, 2019

Products (1)

  • Cisco Web Security Appliance

Known Affected Releases

10.5.2-042

Description (partial)

Symptom:
Prox continuously restarts when WSA upgraded with invalid ciphers in UI->SSL config

Conditions:
WSA10.5.1-296 added with invalid cipher, did upgrade to 10.5.2-042 and hitting continuous prox restart in WSA. After upgrade the invalid cipher looks like this in ssl config:
EECDH:DSS:RSA:!NULL:!eNULL:!EXPORT:!3DES:!RC4:!RC2:!DES:!SEED:!CAMELLIA:!SRP:!IDEA:!ECDHE-ECDSA +DES:SEED

Note: space added in between the ciphers are shown in UI. That space will go off, if we do edit and commit it back after the upgrade. After that we will not see prox process restarts.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.