]> git.pld-linux.org Git - packages/apache.git/blobdiff - apache-mod_ssl.conf
projects / packages / apache.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
- rel 4; use currently available (unofficial) fix for latest 'Range' vuln.
[packages/apache.git] / apache-mod_ssl.conf
diff --git a/apache-mod_ssl.conf b/apache-mod_ssl.conf
index 1cef405e7aa8cb613de0856d6c7338568e43d9d6..0867c277e6694efe9e62d85c6c585862091d4c1a 100644 (file)
--- a/apache-mod_ssl.conf
+++ b/apache-mod_ssl.conf
@@ -70,10 +70,16 @@ NameVirtualHost *:443
 #   Enable/Disable SSL for this virtual host.
 SSLEngine on
 
+#   Usable SSL protocol flavors:
+#   This directive can be used to control the SSL protocol flavors mod_ssl
+#   should use when establishing its server environment. Clients then can only
+#   connect with one of the provided protocols.
+SSLProtocol all -SSLv2
+
 #   SSL Cipher Suite:
 #   List the ciphers that the client is permitted to negotiate.
 #   See the mod_ssl documentation for a complete list.
-SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+eNULL
+SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM
 
 #   Server Certificate:
 #   Point SSLCertificateFile at a PEM encoded certificate.  If
The most widely used Web server on the Internet
This page took 0.035475 seconds and 4 git commands to generate.