On Thu, Apr 8, 2010 at 9:24 AM, Vorazzo Manuela
wrote:
> *) SECURITY: CVE-2009-3555 (cve.mitre.org)
> Is there some workaround to do this without upgrade my apache version???
>
> I mean some mod_ssl configuration directives that I can set for bypass the
> problem/vulnerability???
No, you'd min
Hello everyone.
I've an apache 2.2.11 up and running in a linux suse 10 environment and openssl
0.9.6.g version.
After a network scan they've found that I have to disable TLS Renegotiation
support in my server.
I've seen that I can do this with SSLInsecureRenegotiation off directive in my
confi
