RE: git commit: updated refs/heads/master to 88acc9b

Mon, 03 Nov 2014 16:33:13 -0800 

Rohit,

Apart from SSLv3, we may want to disable TLS1.0, TLS1.1, as they have similar 
vulnerabilities.

TLS1.2 is preferrred.

Regards,
Santhosh
________________________________________
From: bhais...@apache.org [bhais...@apache.org]
Sent: Monday, November 03, 2014 3:18 PM
To: comm...@cloudstack.apache.org
Subject: git commit: updated refs/heads/master to 88acc9b

Repository: cloudstack
Updated Branches:
  refs/heads/master aa8477034 -> 88acc9bd5


systemvm: Prefer TLS over SSL in apache, POODLE workaround (CVE??2014??3566)

Just prefer TLS over SSL in apache configuration in systemvm

Signed-off-by: Rohit Yadav <rohit.ya...@shapeblue.com>


Project: http://git-wip-us.apache.org/repos/asf/cloudstack/repo
Commit: http://git-wip-us.apache.org/repos/asf/cloudstack/commit/88acc9bd
Tree: http://git-wip-us.apache.org/repos/asf/cloudstack/tree/88acc9bd
Diff: http://git-wip-us.apache.org/repos/asf/cloudstack/diff/88acc9bd

Branch: refs/heads/master
Commit: 88acc9bd53cbf6f8896d32576f916c20704a3403
Parents: aa84770
Author: Rohit Yadav <rohit.ya...@shapeblue.com>
Authored: Tue Nov 4 01:43:55 2014 +0530
Committer: Rohit Yadav <rohit.ya...@shapeblue.com>
Committed: Tue Nov 4 01:43:55 2014 +0530

----------------------------------------------------------------------
 systemvm/patches/debian/config/etc/apache2/httpd.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cloudstack/blob/88acc9bd/systemvm/patches/debian/config/etc/apache2/httpd.conf
----------------------------------------------------------------------
diff --git a/systemvm/patches/debian/config/etc/apache2/httpd.conf 
b/systemvm/patches/debian/config/etc/apache2/httpd.conf
index 0565a8c..2a6b921 100644
--- a/systemvm/patches/debian/config/etc/apache2/httpd.conf
+++ b/systemvm/patches/debian/config/etc/apache2/httpd.conf
@@ -1,2 +1,2 @@
-SSLProtocol -ALL +SSLv3 +TLSv1
+SSLProtocol +TLSv1 +TLSv1.1 +TLSv1.2
 SSLCipherSuite ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM

Reply via email to