Firewall > SSL Control
497
SonicOS Enhanced 4.0 Administrator Guide
SSL is not limited to securing HTTP, but can also be used to secure other TCP protocols
such as SMTP, POP3, IMAP, and LDAP. For more information, see http://wp.netscape.com/
eng/security/SSL_2.html. SSL session establishment occurs as follows:
SSLv2 – The earliest version of SSL still in common use. SSLv2 was found to have a
number of weaknesses, limitations, and theoretical deficiencies (comparatively noted in the
SSLv3 entry), and is looked upon with scorn, disdain, and righteous indignation by security
purists.
SSLv3 – SSLv3 was designed to maintain backward compatibility with SSLv2, while adding
the following enhancements:
Alternate key exchange methods, including Diffie-Hellman.
Hardware token support for both key exchange and bulk encryption.
SHA, DSS, and Fortezza support.
Out-of-Band data transfer.