Skip to main content

Disable insecure connections

Overview

About this category

This category contains privacy scripts for Windows.

These changes use Windows system commands to update your settings.

This category includes scripts designed to enhance users' security and privacy by disabling outdated or vulnerable connections across the system. It safeguards data against interception, unauthorized access, and attacks that exploit outdated technology vulnerabilities, including man-in-the-middle attacks and data breaches.

By disabling these insecure connections, these scripts follow cybersecurity best practices and recommendations. Although Windows supports insecure connections for compatibility, prioritizing security, these scripts disable them.

Caution

This may cause compatibility issues with older devices or software.

Caution: Mixed Risk Levels

Be careful running these scripts. This category includes scripts with high impact:

  • 🔴 Some not recommended scripts. They should only be used by advanced users. They may break important functionality.
  • 🟡 Some recommended scripts only if you understand its implications. Some non-critical or features may no longer function correctly after running this this category.
  • 🟢 Some safely recommended scripts. Safe-to use for any user.
Implementation Details
  • Language: batch

  • Scripts Count: 17 scripts

  • Subcategories: 3

  • Required Privileges: Administrator rights

  • Compatibility: Windows only

  • Reversibility: All changes can be reverted

Apply now

These scripts are written using Batch (batchfile) scripting language.

Choose one of two ways to apply:

  1. Automatically via privacy.sexy: The easiest and safest option.
  2. Manually by downloading: Requires downloading a file.

Alternative 1. Apply with Privacy.sexy

privacy.sexy is free and open-source application that lets securely apply this action easily.

Open privacy.sexy

It allows selectively choose parts of this action to conduct. You can fully restore this action (revert back to the original behavior) using the application. Additionally, you can apply only the recommended scripts, instead of applying all of the scripts.

privacy.sexy instructions
  1. Open or download the desktop application
  2. Search for the category name: Disable insecure connections.
  3. Check the category by clicking on the checkbox of the category.
  4. Click on Run button at the bottom of the page.

Alternative 2. Download

You can choose to apply only scripts with less impact or also those with higher impact:

Standard

Recommended for all users. It helps to improve privacy without affecting stability.

Scroll

Strict

Recommended if you understand its implications. It may cause some non-critical features to no longer function correctly.

Scroll

All

Not recommended for daily use as it breaks important functionality. It provides military-grade privacy, for special use-cases. Do not run it without having backups and system snapshots.

Scroll

Consider restarting your computer for all changes to take affect.

Reversible

This action is completely reversible, you can restore your changes to the initial/default state. The restore/revert methods provided here can help you fix issues.

If something goes wrong, use the Revert script provided above.

Standard

This script includes only Standard recommendation level.

Safe for General Use

Standard scripts in this category is recommended for all users. They help to improve privacy without affecting stability.

Download only standard scripts by clicking on the button:

Download script

Restore these changes if you decide to revert them by downloading the restore script:

Download restore script

Strict

This script includes Standard and Strict recommendation levels.

Use with Caution

This script is only recommended if you understand their implications of every single change. Some non-critical or features may no longer function correctly after running this script.

Download Strict scripts:

Download script

Restore these changes if you decide to revert them by downloading the restore script:

Download restore script

All

This script includes Standard, Strict recommendation levels along with unrecommended scripts.

Not Advised

This script should only be used by advanced users. Some of these changes are NOT recommended for daily use as it breaks important functionality. Do not run it without having backups and system snapshots.

Download all scripts:

Download script

Restore these changes if you decide to revert them by downloading the restore script:

Download restore script

Explore further

This category includes total of 17 scripts and 3 subcategories.

Explore its 2 subscripts and 3 subcategories:

Disable insecure ciphers

This category improves network security by disabling outdated and less secure cipher suites. Cipher suites are sets of cryptographic algorithms used to secure network connections. They include ciphers, known as bulk encryption algorithms or simply bulk ciphers. Ciphers encrypt messages exchanged between clients and servers. Using outdated cipher suites exposes data to risks of interception and tampering during transmission. Disabling insecure ciphers meets security standards set ...

Disable insecure hashes

This category includes scripts to disable insecure hash algorithms during cryptographic operations. Hash algorithms are essential for internet security, electronic banking, and document signing. Insecure hashes, however, are susceptible to collision attacks. This vulnerability enables attackers to spoof content, perform phishing, or execute man-in-the-middle attacks. Consequently, an attacker could intercept or modify data transmitted over what is believed to be a secure connection, without bein...

Disable insecure protocols

This category focuses on enhancing user privacy by disabling legacy and insecure communication protocols. It targets protocols that expose users to security vulnerabilities due to their outdated nature. Retaining obsolete protocols creates a false sense of security because they may seem secure but are vulnerable to exploitation. Authorities like NIST (FIPS), NSA (National Security Agency), Office of the Chief Information Security Officer, Microsoft, Mozilla, PCI Security Standards Council, the C...

Disable insecure renegotiation

This script enhances your security by reducing risks associated with secure communications. By running this script, you proactively enhance your online privacy and secure against well-known TLS vulnerabilities. TLS secures internet communications. It allows parties such as browsers and websites to update their encryption settings through renegotiation. Without safeguards, attackers could intercept and compromise these communications. Insecure renegotiation can let attackers hijack communicat...

Disable insecure connections from .NET apps

This script improves security by enforcing secure network connections across all .NET applications. By setting the "SchUseStrongCrypto" configuration, it prevents the use of outdated and insecure connections, including: Protocols weaker than TLS 1.1 and TLS 1.2. • Cipher algorithms such as RC4, NULL, DES, and export suites. • Hash algorithms like MD5. Authorities like Microsoft, and Department of Defense (DoD) recommend this configuration as part of their security guidelines. This script applies...

Explore Categories

This action belongs to Improve network security category. This category is dedicated to improving network security. It aims to minimize vulnerabilities by offering various settings that improve the integrity and confidentiality of data transmitted over the network. It features a range of measures to protect data transmission from unauthorized access,... Read more on category page ▶

Support

This website relies on your support.

Support now

Your donation helps keep the project alive and improves its content ❤️.

Share this page: