Hi Steve...
Not really related to the heartbleed issue, but about apache SSL
protocol settings..
Have you had any issues with disabling ssl 2/3 ?
I've never managed to get qualsys to give me better than an 'A-' and
still keep support for older IE7/8 and early android 2.x mobile devices
intact. I turn off SSL2, but keep 3 enabled for the old stuff.
ie: https://www.ssllabs.com/ssltest/analyze.html?d=rd3.co.nz
(My own one, can't really share any of the work ones that have the issue
as they are what we'd call dark-web. :) )
There's lots written about this all over the web but no real
best-practice info for keeping the old devices supported that floats to
the top. Unfortunately I support some stuff that is used predominantly
in Asia and there are a _lot_ of old mobile and windows XP devices there...
Cheers, Me.
On 09/04/14 11:33, Steve Holdoway wrote:
Here's one I cleaned up earlier...
https://www.ssllabs.com/ssltest/analyze.html?d=kidstoybox.com.au (:
Cheers, Steve
_______________________________________________
Linux-users mailing list
[email protected]
http://lists.canterbury.ac.nz/mailman/listinfo/linux-users
