sureshmsi.co.nr

  • co.nr

Disable SSLv2 and enable SSLv3 in the server in Ensim Linux Server

Posted by sureshm on October 26, 2007

Disable SSLv2 and enable SSLv3 in the server in Ensim Linux Server

Edit the conf of ssl

# vi /etc/httpd/conf.d/ssl.conf

Add/Edit the lines

SSLProtocol -All +SSLv3 +TLSv1
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:!SSLv2:+EXP
Restart Apache

/etc/init.d/httpd restart

You can connect the server using OpenSSL to test it :

openssl s_client -connect localhost:443

Replace the localhost with the server name

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

 
%d bloggers like this: