How can I disable SSLv3 support

CPanel servers:

From WHM >> Service Configuration >> Apache Configuration >> Include Editor, and include the following in Pre Main Include

SSLHonorCipherOrder On
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2


Press the Update button to rebuild your Apache configuration and click the "restart Apache" button.

DirectAdmin servers:

Log is as root and issue: 

sed -i 's/+SSLv3/-SSLv3/g' /etc/httpd/conf/extra/httpd-ssl.conf  followed by service httpd restart

Nginx:

Login as root replace in /etc/nginx/nginx.conf:

ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;

to

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

Restart Nginx.

/etc/init.d/nginx restart

Apache:

Add the following to your Apache configuration: SSLProtocol All -SSLv2 -SSLv3

On Debian,Ubuntu  and Turnkey systems edit /etc/apache2/mods-available/ssl.conf and restart Apache via service apache2 restart.

On CentOS, Fedora and Scientific Linux edit /etc/httpd/conf.d/ssl.conf  and restart Apache via systemctl restart httpd.

Please use the following site to check if your server isn't supporting SSLv3  anymore:

https://www.poodlescan.com/

 

Hebt u meer vragen? Een aanvraag indienen

0 Opmerkingen

Artikel is gesloten voor opmerkingen.