Apache/PCI – Disable Weak Cipher and older TLS Support

PCI compliance tests require you to disable weak ciphers and older TLS support.
You can do that by adding the following to your httpd.conf (Generally under /etc/httpd/conf/):

SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT56:+HIGH:+MEDIUM:-SSLv2:-RC4:+EXP

You must log in to post a comment.

M	T	W	T	F	S	S
				Feb »
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31