Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Disabled SSLCipherSuite are allowed for the communication |
|
| Author |
|
MDsKumaran
Joined: 25 Sep 2020
Posts: 2
Location: India
|
 Posted: Fri 25 Sep '20 8:12 Post subject: Disabled SSLCipherSuite are allowed for the communication |
 |
|
| We are able to communicate with the disabled SSLCipherSuite list(!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4:!3DES:!CAMELLIA) in apache 2.4.43 and OpenSSL 1.1.1f, It works fine in 2.4.39 after the upgrade is not working, We have ensured the latest OpenSSL 1.1.1f it's working fine, Through the apache it's not working. |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg
|
| Posted: Mon 05 Oct '20 9:25 Post subject: |
|
|
Create a list with the ciphers you want to use
example
| Code: | SSLCipherSuite SSL ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384
SSLCipherSuite TLSv1.3 TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384 |
|
|
| Back to top |
|
|
|
|
|
|
