[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Raq3 attempt of OpenSSL Fix

Subject: RE: [cobalt-users] Raq3 attempt of OpenSSL Fix
From: "Andy Brown" <andy.brown@xxxxxxxxxxxxx>
Date: Tue Sep 17 08:10:00 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

<snip>
On Tuesday 17 September 2002 04:58, Andy Brown wrote:
> Hi,
> I've tried this on our RaQ3 and get errors so mod_ssl won't compile, any
> pointers anyone?? i've pointed out where things go pear-shaped....

I ended up in a similar place with the RaQ3
I think it is the old version of apache.
</snip>

Just to update on where I got to (Stupid exchange server has been down most of the day... hmmph!) I got a mail from Stephanie regarding de-activating the potentially harmful element SSLV2.

As I'm a no-brainer when it comes to the SSL part of apache, i'd appreciate feedback on applying this kind of fix, at least to hide this vulnerability.
It required mod to httpd.conf adding:
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:!SSLv2:+EXP:+eNULL

Thanks in advance, from my first tests this appears to solve it.

Regards,

Andy
andy@xxxxxxxxxx
http://www.raqpak.com/ <-- Raq/Qube unofficial PKGs and support advice

Prev by Date: [cobalt-users] Raq2 NEEDED!
Next by Date: Re: [cobalt-users] Recycling a CacheRaq 2
Previous by thread: Re: [cobalt-users] Raq3 attempt of OpenSSL Fix
Next by thread: [cobalt-users] RaQ3 Sendmail Problems

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index