1. Home
  2. Forums Index
  3. Server Side / Apache Web Server 10:03 pm May 1, 2026

Forum Moderators: phranque

Message Too Old, No Replies

SSLv2 and ssl.conf problem

         

sackerman

1:02 pm on Oct 23, 2011 (gmt 0)

10+ Year Member



I have disabled SSLv2 in ssl.conf in /etc/httpd/conf.d by adding following: SSLProtocol -ALL +SSLv3 +TLSv1.
Restarted Apache, but when using open_ssl on the command line it still reports SSLv2 being available. I have checked the http.conf file and there are no SSL directives in it and I can find no other files in /etc/httpd/conf.d that conflict. I am stumped. I am using Virtual Hosts but the ssl.conf file accommodates that.
Apache 2.2.15 64-bit on a CentOS 5.6 box running Plesk 9.5

coopster

11:18 pm on Oct 25, 2011 (gmt 0)

WebmasterWorld Administrator 10+ Year Member



Welcome to WebmasterWorld, sackerman.

You can still use open_ssl on the command line outside of Apache. open_ssl is it's own library. By the way, a simpler line might be: 
SSLProtocol All -SSLv2
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / Apache Web Server 10:03 pm May 1, 2026