By tort ( November 19, 2014 at pm 5:07) · Filed under Web Host Manager Tutorial
登陆WHM » Service Configuration » Apache Configuration » Include Editor » Pre Main Include
Code:
SSLProtocol All -SSLv2 -SSLv3
SSLCipherSuite EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH +
SSLHonorCipherOrder on
This will work with Apache and also LiteSpeed, if you have this installed on your server.
testhttp://foundeo.com/products/iis-weak-ssl-ciphers/test.cfm
or
Home » Service Configuration » Apache Configuration » Include Editor » Pre Main Include (pre_main_global.conf)
Enter:
SSLProtocol ALL -SSLv2 -SSLv3
Save and restart Apache to complete.
Permalink
By tort ( November 19, 2014 at pm 5:00) · Filed under Linux Share
SSLv3 Vulnerability broke again,Google's new draft TLS_FALLBACK_SCSV Under yet unclear circumstances,SSLv3 is currently disabled Does not consider IE6 The workaround。
1 2 3 4 5 | ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers ECDHE–RSA–AES256–SHA384:AES256–SHA256:RC4:HIGH:!MD5:!Anull:!eNULL:!NULL:!DH:!EDH:!AESGCM; ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:10m; ssl_session_timeout 10m; |
sslv3 testhttp://foundeo.com/products/iis-weak-ssl-ciphers/test.cfm
Permalink
