Ignore:
Timestamp:
May 2, 2008, 6:45:13 PM (14 years ago)
Author:
andersk
Message:
Update SSL configuration directives from Fedora's ssl.conf.  Notably,
disable SSLv2.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • server/fedora/config/etc/httpd/conf/httpd.conf

    r734 r740  
    304304
    305305    SSLPassPhraseDialog  builtin
    306     SSLSessionCache dbm:/var/run/ssl_scache
     306    SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
    307307    SSLSessionCacheTimeout 28800
    308     SSLMutex file:/var/run/ssl_mutex
    309     SSLRandomSeed startup builtin
     308    SSLMutex default
     309    SSLRandomSeed startup file:/dev/urandom 256
    310310    SSLRandomSeed connect builtin
     311    SSLCryptoDevice builtin
    311312    SSLCertificateFile /etc/pki/tls/certs/scripts.pem
    312313    SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
     
    314315    SSLVerifyClient none
    315316    SSLOptions +StdEnvVars
     317    SSLProtocol all -SSLv2
     318    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
    316319    <VirtualHost 18.181.0.50:443 18.181.0.50:444>
    317320        ServerName scripts-cert.mit.edu
Note: See TracChangeset for help on using the changeset viewer.