supported ciphers and protocols depend on the openssl version you are
using, which, if my eyes do not deceive me, you haven't mentioned.
Perhaps you should check that first before changing cipher/protocol
parameters in httpd.
"openssl ciphers -v 'ALL'" should do, if the openssl version in your
pa
On 27 Nov 2020, at 08:34, Lentes, Bernd
wrote:
> I have an elder software (ServersAlive)
,,,
> What can i do ?
You need software that works with modern current security. Seems to me like
your old software is using SSL which is insecure and not supported and should
NOT be used. Trying to fin
vember 2020 16:25
To: users Maillingsliste Apache
Subject: Re: [users@httpd] Questions to SSLciphersuite [EXT]
- On Nov 27, 2020, at 4:58 PM, Stefan Eissing stefan.eiss...@greenbytes.de
wrote:
> If your client cannot connect, maybe it is old and wants to talk SSLv3
> which is
- On Nov 27, 2020, at 4:58 PM, Stefan Eissing stefan.eiss...@greenbytes.de
wrote:
> If your client cannot connect, maybe it is old and wants to talk SSLv3 which
> is
> no longer supported?
>
Hi Stefan,
thanks for your answer.
That's what i assume. Isn't it possible to adapt the cipher-s
If I use
> openssl s_client -connect nc-mcd.helmholtz-muenchen.de:443
I get a connection using TLSv1.2. So far, so good.
If your client cannot connect, maybe it is old and wants to talk SSLv3 which is
no longer supported?
Your settings look fine otherwise, afaict.
- Stefan
> Am 27.11.2020 um
Dear all,
in 20 years administrating linux hosts i always avoided it successfully to
change the SSlCipherSuite, hoping the default from Suse or Ubuntu would be fine
and secure.
But now i'm in the situation that i have to touch it for the first time, and
afraid of opening a big door because of w
