Go to Qiita Advent Calendar 2024 Top
LoginSignup
1
1

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 5 years have passed since last update.

@aclock@github(@ tack)

Apacheにおける POODLE SSLv3.0 脆弱性問題とか

Last updated at Posted at 2014-12-02

Apache httpd + mod_ssl SSL 3.0 を無効

※自分用のメモ的な扱い。

世間一般の解説にあるSSLv2 および SSLv3 を無効に
(SSLv2 と SSLv3 以外はすべて有効にする)といった下記方法

SSLProtocol All -SSLv2 -SSLv3

では、

SSL Server Test
https://www.ssllabs.com/ssltest/index.html

にてチェックをかけると、無効っぽいけどinsecureとか出て、
なんだか気持ち悪い。

TLSv1.x 以外をすべて無効にする記述の
SSLProtocol -All +TLSv1

1
1
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
Sign upLogin
1
1

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?