On Thu, Oct 16, 2014 at 07:31:30PM +0000, Antoni Villalonga wrote: > I've been checking this issue and now I've a patch for it (attached). > Add «Protocols "TLSv1"» after Ciphers line in pound.cfg to dissable > SSLv2&SSLv3. > It is an approach of SSLProtocols in Apache mod_ssl. Needs more work.
I can confirm that this patch, with a minor conflict resolved, lets me disable SSLv3. I still get 2 warnings from ssllabs, think I will open separate bug reports on these. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
