httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From wr...@apache.org
Subject svn commit: r1677722 - /httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in
Date Tue, 05 May 2015 01:29:24 GMT
Author: wrowe
Date: Tue May  5 01:29:23 2015
New Revision: 1677722

URL: http://svn.apache.org/r1677722
Log:

Unassociated correction, to globalize the default suggested SSLProtocol
directive disabling SSLv2.  Not strictly required since this is now the
global default.  This directive should travel with SSLCipherSuite, however
it no longer existed in the corresponding commits to trunk/ and 2.4.x/.

Applied C-T-R following docs/ process.



Modified:
    httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in

Modified: httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in?rev=1677722&r1=1677721&r2=1677722&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in (original)
+++ httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in Tue May  5 01:29:23 2015
@@ -67,6 +67,11 @@ SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
 #SSLCipherSuite RC4-SHA:AES128-SHA:HIGH:MEDIUM:!aNULL:!MD5
 #SSLHonorCipherOrder on 
  
+#   SSL Protocol support:
+#   List the protocol versions which clients are allowed to
+#   connect with. Disable SSLv2 by default (cf. RFC 6176).
+SSLProtocol all -SSLv2
+
 #   Pass Phrase Dialog:
 #   Configure the pass phrase gathering process.
 #   The filtering dialog program (`builtin' is a internal
@@ -102,11 +107,6 @@ TransferLog "@exp_logfiledir@/access_log
 #   Enable/Disable SSL for this virtual host.
 SSLEngine on
 
-#   SSL Protocol support:
-#   List the protocol versions which clients are allowed to
-#   connect with. Disable SSLv2 by default (cf. RFC 6176).
-SSLProtocol all -SSLv2
-
 #   Server Certificate:
 #   Point SSLCertificateFile at a PEM encoded certificate.  If
 #   the certificate is encrypted, then you will be prompted for a



Mime
View raw message