Analytic

Wednesday, October 15, 2014

Disable SSLv2 and SSLv3 in Apache

The best way to disable both SSLv2 and SSLv3 and only enable TLS 1.0-1.2 is to use this configuration in your Apache configuration file:






SSLProtocol TLSv1
 
Example:
 
SSLEngine On
SSLProtocol TLSv1
SSLCertificateFile      domain.crt
SSLCertificateKeyFile   domain.key

No comments: