From 39440a58648de1fbbc2c959e6edd63dcdc4f7c28 Mon Sep 17 00:00:00 2001 From: psz Date: Tue, 6 Jul 2010 08:18:18 +0000 Subject: [PATCH] disable SSLv2 Changed files: apache-mod_ssl.conf -> 1.20 apache.spec -> 1.599 --- apache-mod_ssl.conf | 8 +++++++- apache.spec | 2 +- 2 files changed, 8 insertions(+), 2 deletions(-) diff --git a/apache-mod_ssl.conf b/apache-mod_ssl.conf index 1cef405..0867c27 100644 --- a/apache-mod_ssl.conf +++ b/apache-mod_ssl.conf @@ -70,10 +70,16 @@ NameVirtualHost *:443 # Enable/Disable SSL for this virtual host. SSLEngine on +# Usable SSL protocol flavors: +# This directive can be used to control the SSL protocol flavors mod_ssl +# should use when establishing its server environment. Clients then can only +# connect with one of the provided protocols. +SSLProtocol all -SSLv2 + # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. -SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+eNULL +SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM # Server Certificate: # Point SSLCertificateFile at a PEM encoded certificate. If diff --git a/apache.spec b/apache.spec index 187f419..6977227 100644 --- a/apache.spec +++ b/apache.spec @@ -41,7 +41,7 @@ Summary(ru.UTF-8): Самый популярный веб-сервер Summary(tr.UTF-8): Lider WWW tarayıcı Name: apache Version: 2.2.15 -Release: 3 +Release: 4 License: Apache v2.0 Group: Networking/Daemons/HTTP Source0: http://www.apache.org/dist/httpd/httpd-%{version}.tar.gz -- 2.44.0