I first tried to add all kinds of variations of GnuTLSPriorities SECURE:!VERS-SSL3.0:!VERS-TLS1.0:+VERS-TLS1.2:+VERS-TLS1.1
to /etc/apache2/mods-available/gnutls.conf as I did similar stuff for openssl in /etc/apache2/mods-available/ssl.conf But it turned out, that you have to edit your /etc/apache2/sites-available/default-tls to contain this line. Some documentation: http://mod-gnutls.sourceforge.net/downloads/docs/mod_gnutls_manual-0.1.html It is from 2011 but I didn't find more recent docs. It is not mentioned, that you can also disable using "-" instead of "!" or that TLS1.2 is implemented and it is not very verbose. On my server the line above has the same result as GnuTLSPriorities NORMAL:!VERS-SSL3.0:!VERS-TLS1.0:+VERS-TLS1.2:+VERS-TLS1.1:!MD5 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
