Disabling sslv2 on linux for port 636.
mark
m.roth2006 at rcn.com
Tue Jun 2 14:30:44 UTC 2009
Rohit khaladkar wrote:
> Hi All,I want to disable ssl2 on a linux server for Port 636. Here is the
> procedure that I followed :
>
> 1)Edit ssl.conf and added following entries in it .
>
> SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL
> SSLProtocol -All +SSLv3 +TLSv1
>
> 2)Restarted Apache service.
>
> 3)Restarted network.
>
> I checked if ssl2 is disabled using the following command :
>
> openssl s_client -connect hostname:636 -ssl2
>
> where hostname= server name
>
> But it still shows me the certificate. I even tried rebooting the machine ,
> but no luck.
>
> Am I missing anything here?.
>
Have you checked httpd.conf, or anywhere else in ssl.conf, or any other *.conf
to see if apache is told to listen to 636 somewhere, or whether there's a
virtual host on that port?
mark
More information about the redhat-list
mailing list