[packages/apache] - disable SSLv3 (poodle bug)
arekm
arekm at pld-linux.org
Mon Oct 20 14:30:36 CEST 2014
commit 87e57007f59fa59eb5fc9cadabc73acd5a51bedc
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date: Mon Oct 20 14:30:33 2014 +0200
- disable SSLv3 (poodle bug)
apache-mod_ssl.conf | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
---
diff --git a/apache-mod_ssl.conf b/apache-mod_ssl.conf
index 37a5ad0..da433b1 100644
--- a/apache-mod_ssl.conf
+++ b/apache-mod_ssl.conf
@@ -64,7 +64,7 @@ SSLSessionCacheTimeout 300
# This directive can be used to control the SSL protocol flavors mod_ssl
# should use when establishing its server environment. Clients then can only
# connect with one of the provided protocols.
-SSLProtocol all -SSLv2
+SSLProtocol all -SSLv2 -SSLv3
# SSL Cipher Suite:
# List the ciphers that the client is permitted to negotiate.
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/apache.git/commitdiff/87e57007f59fa59eb5fc9cadabc73acd5a51bedc
More information about the pld-cvs-commit
mailing list