Spyderserve Web Development

Removing SSLv3 Support From Apache

Gary Kuhlmann - November 22, 2017

Security

To disable SSLv3 support for Apache you need to look for the ssl configuration file (in Centos it is at /etc/httpd/conf.d/ssl.conf) and modify the SSLProtocol line:

SSLProtocol all -SSLv2 -SSLv3

You can also add the line after SSLEngine On in a Virtual Host file.

Just be aware that old versions of Internet Explorer (<=6) do not have TLS enabled by default so any users still using this version will be left out in the cold.

Sources: https://www.digicert.com/ssl-support/apache-disabling-ssl-v3.htm
https://help.salesforce.com/articleView?id=000220586&language=en_US&type=1

This website uses cookies to improve your browsing experience. Cookies help us remember your preferences, keep you logged in, and understand how you interact with our site. We do not share any personal information collected by cookies with third parties.

Dismiss

Spyderserve  2225 Bemiss Road Suite D Valdosta, Georgia 31602 United States