POODLE Attack

From NovaOrdis Knowledge Base

Revision as of 00:34, 7 January 2016 by Ovidiu (talk | contribs) (Created page with "=Internal= * httpd SSL Configuration =External= * https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack * https://scotthe...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Internal

httpd SSL Configuration

External

Disable SSL3 on Apache httpd

To disable SSLv3 on httpd modify the SSLProtocol directive at the top level in ssl.conf:

SSLProtocol All -SSLv2 -SSLv3

This will give you support for TLSv1.0, TLSv1.1 and TLSv1.2, but explicitly removes support for SSLv2 and SSLv3.

Retrieved from "https://kb.novaordis.com/index.php?title=POODLE_Attack&oldid=719"