Log In | Register | November 19, 2019

Share
 

Linux - November 3, 2014

POODLE Disable SSL V3 on Apache

Below is a quick way to disable SSL v3 for apache configurations.

Lets start off by creating a new file in our /etc/httpd/conf.d/ directory. You can name this file whatever you’d like. In this example we are using a Plesk on a RHEL based system.

1. Create file

touch /etc/httpd/conf.d/zz050-psa-disable-weak-ssl-ciphers.conf

2. Add following contents to file

SSLHonorCipherOrder on
SSLProtocol ALL -SSLv2 -SSLv3
SSLCipherSuite ALL:!ADH:!LOW:!SSLv2:!EXP:+HIGH:+MEDIUM

3. Finally restart services

service httpd restart

If you are using Plesk, also restart plesk.
service psa stop && service psa start

Post By: | FavoriteLoadingAdd to favorites

2 Comments

GYLTTKIQDYMCHOAD
Thursday, September 6, 2018

This website online is known as a stroll-via for the entire data you wished about this and didn’t know who to ask. Glimpse right here, and also you’ll undoubtedly discover it.

bestringtoness.com
Monday, October 21, 2019

This directive can be set either at the server level or in a virtual host configuration. Depending on your distribution s Apache configuration, the SSL configuration may be located in a separate file that is sourced.

Leave a Comment



Need Help? Ask a Question

Ask anything you want from how to questions to debug. We're here to help.

You Must Be Logged In To Post A Question.

Log In or Register