POODLE Attack

From NovaOrdis Knowledge Base
Revision as of 00:34, 7 January 2016 by Ovidiu (talk | contribs) (Created page with "=Internal= * httpd SSL Configuration =External= * https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack * https://scotthe...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Internal

External


Disable SSL3 on Apache httpd

To disable SSLv3 on httpd modify the SSLProtocol directive at the top level in ssl.conf:

SSLProtocol All -SSLv2 -SSLv3

This will give you support for TLSv1.0, TLSv1.1 and TLSv1.2, but explicitly removes support for SSLv2 and SSLv3.