Easy and Simple Solution

Monday, August 8, 2016

sslv3 poodle attack fix

No comments
To get rid from sslv3 attack on your server , you need to disable the sslv3.Its more secure to disabling the service.

1.Goto WHM >> Service Configuration >> Apache Configuration >> Include Editor >> Pre Main Include >> Select All Version
Add the line and update the config, Once completed rebuild & restart apache.
SSLHonorCipherOrder On
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2

To check SSLv3 POODLE vulnerability :
check from terminal openssl s_client -connect www.demo.com:443 -ssl3
check from browser https://pentest-tools.com/network-vulnerability-scanning/ssl-poodle-scanner

No comments :

Post a Comment